| Max CVSS | 7.8 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-11489 | 5.0 |
NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contain a vulnerability in the AMI BMC firmware in which default SNMP community strings are used, which may lead to i
|
21-07-2021 - 11:39 | 29-10-2020 - 04:15 | |
| CVE-2020-11616 | 5.0 |
NVIDIA DGX servers, all BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which the Pseudo-Random Number Generator (PRNG) algorithm used in the JSOL package that implements the IPMI protocol is not cryptograph
|
21-07-2021 - 11:39 | 29-10-2020 - 04:15 | |
| CVE-2020-11484 | 4.0 |
NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contains a vulnerability in the AMI BMC firmware in which an attacker with administrative privileges can obtain the hash of the BMC/IPMI user password, which may lead to infor
|
21-07-2021 - 11:39 | 29-10-2020 - 04:15 | |
| CVE-2020-11487 | 5.0 |
NVIDIA DGX servers, DGX-1 with BMC firmware versions prior to 3.38.30. DGX-2 with BMC firmware versions prior to 1.06.06 and all DGX A100 Servers with all BMC firmware versions, contains a vulnerability in the AMI BMC firmware in which the use of a h
|
12-11-2020 - 14:41 | 29-10-2020 - 04:15 | |
| CVE-2020-11485 | 6.8 |
NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contains a Cross-Site Request Forgery (CSRF) vulnerability in the AMI BMC firmware in which the web application does not sufficiently verify whether a well-formed, valid, cons
|
05-11-2020 - 20:18 | 29-10-2020 - 04:15 | |
| CVE-2020-11486 | 7.5 |
NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which software allows an attacker to upload or transfer files that can be automatically processed within the product's envir
|
05-11-2020 - 19:45 | 29-10-2020 - 04:15 | |
| CVE-2020-11483 | 7.5 |
NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contains a vulnerability in the AMI BMC firmware in which the firmware includes hard-coded credentials, which may lea
|
05-11-2020 - 19:31 | 29-10-2020 - 04:15 | |
| CVE-2020-11615 | 5.0 |
NVIDIA DGX servers, all BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which it uses a hard-coded RC4 cipher key, which may lead to information disclosure.
|
05-11-2020 - 17:48 | 29-10-2020 - 04:15 | |
| CVE-2020-11488 | 4.6 |
NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contains a vulnerability in the AMI BMC firmware in which software does not validate the RSA 1024 public key used to
|
05-11-2020 - 17:25 | 29-10-2020 - 04:15 | |
| CVE-2013-4786 | 7.8 |
The IPMI 2.0 specification supports RMCP+ Authenticated Key-Exchange Protocol (RAKP) authentication, which allows remote attackers to obtain password hashes and conduct offline password guessing attacks by obtaining the HMAC from a RAKP message 2 res
|
29-10-2020 - 00:15 | 08-07-2013 - 22:55 |