CVE-2023-31024

Name of the Vulnerable Software and Affected Versions NVIDIA DGX A100 BMC (affected versions not specified)

Description The issue is related to a vulnerability in the host KVM daemon of the NVIDIA DGX A100 BMC, where an unauthenticated attacker can cause stack memory corruption by sending a specially crafted network packet. This can lead to arbitrary code execution, denial of service, information disclosure, and data tampering. The vulnerability is also described as a buffer overflow issue in the memory, allowing a remote attacker to read, modify, or delete data, execute arbitrary code, or cause a denial of service by sending a specially crafted packet.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.