Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
None
Privileges Required
High
Attack Vector
Network
0

CVE-2020-11484

Disclosure Date: October 29, 2020
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contains a vulnerability in the AMI BMC firmware in which an attacker with administrative privileges can obtain the hash of the BMC/IPMI user password, which may lead to information disclosure.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

General Information

Vendors

  • NVIDIA

Products

  • NVIDIA DGX Servers

Additional Info

Technical Analysis