GCVE - cpe:2.3:h:nvidia:dgx-2:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:nvidia:dgx-2:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Nvidia (`40c2793d-f37d-5eb8-a9a9-0c9926e4695b`)
Product	Dgx 2 (`2abfba58-62be-5c18-8e27-b7c9987b0746`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-0207`	not_vulnerable	2026-06-03 14:48:45.842477	Details available HIGH (7.5) NVIDIA DGX-2 SBIOS contains a vulnerability where an attacker may modify the ServerSetup NVRAM variable at runtime by executing privileged code. A successful exploit of this vulnerability may lead to denial of service. Published: 2023-04-22T02:28:08.389Z Updated: 2025-02-04T19:29:29.893Z Open on db.gcve.eu Reference links https://nvidia.custhelp.com/app/answers/detail/a_id/5449	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-0201`	not_vulnerable	2026-06-03 14:48:45.832236	Details available MEDIUM (6.7) NVIDIA DGX-2 SBIOS contains a vulnerability in Bds, where a user with high privileges can cause a write beyond the bounds of an indexable resource, which may lead to code execution, denial of service, compromised integrity, and information disclosure. Published: 2023-04-22T02:22:51.372Z Updated: 2025-02-04T19:16:43.629Z Open on db.gcve.eu Reference links https://nvidia.custhelp.com/app/answers/detail/a_id/5449	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-0200`	not_vulnerable	2026-06-03 14:48:45.831774	Details available HIGH (7.5) NVIDIA DGX-2 contains a vulnerability in OFBD where a user with high privileges and a pre-conditioned heap can cause an access beyond a buffers end, which may lead to code execution, escalation of privileges, denial of service, and information disclosure. Published: 2023-04-22T02:21:13.210Z Updated: 2025-02-04T19:17:11.381Z Open on db.gcve.eu Reference links https://nvidia.custhelp.com/app/answers/detail/a_id/5449	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-34400`	vulnerable	2026-06-03 14:44:44.882263	Details available MEDIUM (4.1) NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevated privileges to gain access to information from unscrubbed memory, which may lead to information disclosure. Published: 2021-11-20T14:55:27.000Z Updated: 2024-08-04T00:12:49.808Z Open on db.gcve.eu Reference links https://nvidia.custhelp.com/app/answers/detail/a_id/5263	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-34399`	vulnerable	2026-06-03 14:44:44.816607	Details available MEDIUM (4.1) NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevated privileges to gain access to information from unscrubbed registers, which may lead to information disclosure. Published: 2021-11-20T14:55:25.000Z Updated: 2024-08-04T00:12:49.877Z Open on db.gcve.eu Reference links https://nvidia.custhelp.com/app/answers/detail/a_id/5263	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-23219`	vulnerable	2026-06-03 14:43:54.866972	Details available MEDIUM (4.1) NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller, which may allow a user with elevated privileges to access protected information by identifying, exploiting, and loading vulnerable microcode. Such an attack may lead to information disclosure. Published: 2021-11-20T14:55:24.000Z Updated: 2024-08-03T19:05:55.355Z Open on db.gcve.eu Reference links https://nvidia.custhelp.com/app/answers/detail/a_id/5263	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-1125`	vulnerable	2026-06-03 14:43:27.225476	Details available MEDIUM (4.1) NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevated privileges to corrupt program data. Published: 2021-11-20T14:55:20.000Z Updated: 2024-08-03T15:55:18.660Z Open on db.gcve.eu Reference links https://nvidia.custhelp.com/app/answers/detail/a_id/5263	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-1105`	vulnerable	2026-06-03 14:43:27.188780	Details available MEDIUM (4.1) NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevated privileges to access debug registers during runtime, which may lead to information disclosure. Published: 2021-11-20T14:55:19.000Z Updated: 2024-08-03T15:55:18.491Z Open on db.gcve.eu Reference links https://nvidia.custhelp.com/app/answers/detail/a_id/5263	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-1088`	vulnerable	2026-06-03 14:43:27.101300	Details available MEDIUM (4.1) NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller which may allow a user with elevated privileges to utilize debug mechanisms with insufficient access control, which may lead to information disclosure. Published: 2021-11-20T14:55:17.000Z Updated: 2024-08-03T15:55:18.682Z Open on db.gcve.eu Reference links https://nvidia.custhelp.com/app/answers/detail/a_id/5263	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-11489`	not_vulnerable	2026-06-03 14:41:26.171822	Details available NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contain a vulnerability in the AMI BMC firmware in which default SNMP community strings are used, which may lead to information disclosure. Published: 2020-10-29T03:35:32.000Z Updated: 2024-08-04T11:35:12.442Z Open on db.gcve.eu Reference links https://nvidia.custhelp.com/app/answers/detail/a_id/5010	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-11488`	not_vulnerable	2026-06-03 14:41:26.171461	Details available NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contains a vulnerability in the AMI BMC firmware in which software does not validate the RSA 1024 public key used to verify the firmware signature, which may lead to information disclosure or code execution. Published: 2020-10-29T03:35:32.000Z Updated: 2024-08-04T11:35:12.447Z Open on db.gcve.eu Reference links https://nvidia.custhelp.com/app/answers/detail/a_id/5010	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-11487`	not_vulnerable	2026-06-03 14:41:26.169046	Details available NVIDIA DGX servers, DGX-1 with BMC firmware versions prior to 3.38.30. DGX-2 with BMC firmware versions prior to 1.06.06 and all DGX A100 Servers with all BMC firmware versions, contains a vulnerability in the AMI BMC firmware in which the use of a hard-coded RSA 1024 key with weak ciphers may lead to information disclosure. Published: 2020-10-29T03:35:31.000Z Updated: 2024-08-04T11:35:11.981Z Open on db.gcve.eu Reference links https://nvidia.custhelp.com/app/answers/detail/a_id/5010	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-11483`	not_vulnerable	2026-06-03 14:41:26.167590	Details available NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contains a vulnerability in the AMI BMC firmware in which the firmware includes hard-coded credentials, which may lead to elevation of privileges or information disclosure. Published: 2020-10-29T03:35:30.000Z Updated: 2024-08-04T11:28:14.182Z Open on db.gcve.eu Reference links https://nvidia.custhelp.com/app/answers/detail/a_id/5010	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.