CVE-2024-0105

HIGH EPSS 19.0%

Published Nov 1, 20241y ago · Modified Jun 17, 20261w ago

8.9 CVSS 3.1

High

Published Nov 1, 2024 1y ago

Last Modified Jun 17, 2026 1w ago

Description

NVIDIA ConnectX Firmware contains a vulnerability where an attacker may cause an improper handling of insufficient privileges issue. A successful exploit of this vulnerability may lead to denial of service, data tampering, and limited information disclosure.

CVSS Details

Base Score

8.9

Exploitability

2.3

Impact

6.0

Vector string

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:H

Attack Vector Adjacent

Attack Complexity Low

Privileges Required Low

User Interaction None

Scope Changed

Confidentiality Low

Integrity High

Availability High

Threat Intelligence

EPSS Exploit Probability

19.0% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-274

References 1

nvidia.custhelp.com https://nvidia.custhelp.com/app/answers/detail/a_id/5562

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.