nvd-json-data-feeds/CVE-2023/CVE-2023-255xx/CVE-2023-25529.json

{
  "id": "CVE-2023-25529",
  "sourceIdentifier": "psirt@nvidia.com",
  "published": "2023-09-20T01:15:53.497",
  "lastModified": "2023-09-22T17:17:26.360",
  "vulnStatus": "Analyzed",
  "descriptions": [
    {
      "lang": "en",
      "value": "NVIDIA DGX H100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause a leak of another user\u2019s session token by observing timing discrepancies between server responses. A successful exploit of this vulnerability may lead to information disclosure, escalation of privileges, and data tampering."
    },
    {
      "lang": "es",
      "value": "NVIDIA DGX H100 BMC contiene una vulnerabilidad en el daemon KVM del anfitri\u00f3n, donde un atacante no autenticado puede causar una fuga del token de sesi\u00f3n de otro usuario al observar discrepancias de tiempo entre las respuestas del servidor. Una explotaci\u00f3n exitosa de esta vulnerabilidad puede dar lugar a la divulgaci\u00f3n de informaci\u00f3n, la escalada de privilegios y la manipulaci\u00f3n de datos."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "attackVector": "NETWORK",
          "attackComplexity": "HIGH",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH",
          "baseScore": 8.1,
          "baseSeverity": "HIGH"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 5.9
      },
      {
        "source": "psirt@nvidia.com",
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
          "attackVector": "ADJACENT_NETWORK",
          "attackComplexity": "HIGH",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "CHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "NONE",
          "baseScore": 8.0,
          "baseSeverity": "HIGH"
        },
        "exploitabilityScore": 1.6,
        "impactScore": 5.8
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-203"
        }
      ]
    },
    {
      "source": "psirt@nvidia.com",
      "type": "Secondary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-208"
        }
      ]
    }
  ],
  "configurations": [
    {
      "operator": "AND",
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:o:nvidia:dgx_h100_firmware:*:*:*:*:bmc:*:*:*",
              "versionEndExcluding": "23.08.18",
              "matchCriteriaId": "E5A50133-6664-4379-A1E4-A1626B9CBDB1"
            }
          ]
        },
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": false,
              "criteria": "cpe:2.3:h:nvidia:dgx_h100:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D3B945E1-9A87-41B7-9535-939BE61DA499"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5473",
      "source": "psirt@nvidia.com",
      "tags": [
        "Vendor Advisory"
      ]
    }
  ]
}