Skip to main content
CVE-2023-2243 HIGH POC This Week

A vulnerability was found in SourceCodester Complaint Management System 1.0 and classified as critical. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Complaint Management System
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-2242 HIGH POC This Week

A vulnerability has been found in SourceCodester Online Computer and Laptop Store 1.0 and classified as critical. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Online Computer And Laptop Store
NVD VulDB
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-25507 HIGH This Week

NVIDIA DGX-1 BMC contains a vulnerability in the SPX REST API, where an attacker with the appropriate level of authorization can inject arbitrary shell commands, which may lead to code execution,. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Nvidia Denial Of Service Command Injection RCE Information Disclosure +1
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2023-2240 HIGH PATCH This Week

Improper Privilege Management in GitHub repository microweber/microweber prior to 1.3.4. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Privilege Escalation Microweber
NVD GitHub
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-25506 HIGH This Week

NVIDIA DGX-1 contains a vulnerability in Ofbd in AMI SBIOS, where a preconditioned heap can allow a user with elevated privileges to cause an access beyond the end of a buffer, which may lead to code. Rated high severity (CVSS 8.2), this vulnerability is low attack complexity. No vendor patch available.

Nvidia RCE Information Disclosure Denial Of Service Sbios
NVD
CVSS 3.1
8.2
EPSS
0.2%
CVE-2023-25509 HIGH This Week

NVIDIA DGX-1 SBIOS contains a vulnerability in Bds, which may lead to code execution, denial of service, and escalation of privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Buffer Overflow RCE Denial Of Service Sbios
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-25508 HIGH This Week

NVIDIA DGX-1 BMC contains a vulnerability in the IPMI handler, where an attacker with the appropriate level of authorization can upload and download arbitrary files under certain circumstances, which. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Path Traversal Denial Of Service Information Disclosure Bmc
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-25505 HIGH This Week

NVIDIA DGX-1 BMC contains a vulnerability in the IPMI handler of the AMI MegaRAC BMC , where an attacker with the appropriate level of authorization can cause a buffer overflow, which may lead to. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Buffer Overflow Denial Of Service RCE Information Disclosure +1
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-0209 HIGH This Week

NVIDIA DGX-1 SBIOS contains a vulnerability in the Uncore PEI module, where authentication of the code executed by SSA is missing, which may lead to arbitrary code execution, denial of service,. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Denial Of Service Authentication Bypass RCE Information Disclosure +1
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-0206 HIGH This Week

NVIDIA DGX A100 SBIOS contains a vulnerability where an attacker may modify arbitrary memory of SMRAM by exploiting the NVME SMM API. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Buffer Overflow Information Disclosure Denial Of Service Dgx A100 Firmware
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-0202 HIGH This Week

NVIDIA DGX A100 SBIOS contains a vulnerability where an attacker may modify arbitrary memory of SMRAM by exploiting the GenericSio and LegacySmmSredir SMM APIs. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Buffer Overflow Information Disclosure Denial Of Service Dgx A100 Firmware
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-0184 HIGH This Week

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer handler which may lead to denial of service, escalation of privileges, information disclosure, and. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Denial Of Service Linux Microsoft Information Disclosure +1
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2023-0205 HIGH This Week

NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can exploit insufficient granularity of access control, which may lead to. Rated high severity (CVSS 7.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Nvidia Denial Of Service Connectx Firmware
NVD
CVSS 3.1
7.7
EPSS
0.5%
CVE-2023-0204 HIGH This Week

NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can cause improper handling of exceptional conditions, which may lead to denial. Rated high severity (CVSS 7.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Nvidia Denial Of Service Connectx Firmware
NVD
CVSS 3.1
7.7
EPSS
0.4%
CVE-2023-0203 HIGH This Week

NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can exploit insufficient granularity of access control, which may lead to. Rated high severity (CVSS 7.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Nvidia Denial Of Service Connectx Firmware
NVD
CVSS 3.1
7.7
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy