Xinhao Kong

**Name of the Vulnerable Software and Affected Versions** NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX (affected versions not specified) **Description** The issue is related to insufficient granularity of access control in the NIC firmware, which can be exploited by an unprivileged user to potentially cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX (affected versions not specified) **Description** The issue is related to improper handling of exceptional conditions in the NIC firmware, which may lead to denial of service. An unprivileged user can cause this improper handling. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NVIDIA ConnectX-5 (affected versions not specified) NVIDIA ConnectX-6 (affected versions not specified) NVIDIA ConnectX6-DX (affected versions not specified) **Description** The issue is related to insufficient granularity of access control in the NIC firmware, which can be exploited by an unprivileged user to potentially cause a denial of service. **Recommendations** For NVIDIA ConnectX-5, update to a version that addresses the insufficient access control granularity issue. For NVIDIA ConnectX-6, update to a version that addresses the insufficient access control granularity issue. For NVIDIA ConnectX6-DX, update to a version that addresses the insufficient access control granularity issue. As a temporary workaround, consider restricting access to the NIC firmware to minimize the risk of exploitation.