Dgx 1 P100
CVE-2021-1088
MEDIUM
Severity by source
AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Lifecycle Timeline
1DescriptionNVD
NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevated privileges to utilize debug mechanisms with insufficient access control, which may lead to information disclosure.
AnalysisAI
NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevated privileges to utilize debug mechanisms with insufficient access control,. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.
Technical ContextAI
NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevated privileges to utilize debug mechanisms with insufficient access control, which may lead to information disclosure. Affected products include: Nvidia Dgx-1 P100, Nvidia Dgx-1 V100, Nvidia Dgx-2, Nvidia Dgx Station A100, Nvidia Drive Constellation.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Dgx 1 P100
View allNVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevat
NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevat
NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevat
NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevat
NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller, which may allow a user with eleva
Same technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today