CVE-2024-0101

{"id": "CVE-2024-0101", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "psirt@nvidia.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2024-08-08T17:15:17.560", "references": [{"url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5559", "tags": ["Vendor Advisory"], "source": "psirt@nvidia.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}, {"type": "Secondary", "source": "psirt@nvidia.com", "description": [{"lang": "en", "value": "CWE-693"}]}], "descriptions": [{"lang": "en", "value": "NVIDIA Mellanox OS, ONYX, Skyway, MetroX-2 and MetroX-3 XC contain a vulnerability in ipfilter, where improper ipfilter definitions could enable an attacker to cause a failure by attacking the switch. A successful exploit of this vulnerability might lead to denial of service."}, {"lang": "es", "value": "NVIDIA Mellanox OS, ONYX, Skyway, MetroX-2 y MetroX-3 XC contienen una vulnerabilidad en ipfilter, donde definiciones incorrectas de ipfilter podr\u00edan permitir que un atacante cause una falla al atacar el conmutador. Una explotaci\u00f3n exitosa de esta vulnerabilidad podr\u00eda provocar una denegaci\u00f3n de servicio."}], "lastModified": "2024-09-16T19:24:31.457", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nvidia:mlnx-os:*:*:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "D34C04D4-8472-4497-8976-A1336CA1730E", "versionEndExcluding": "3.11.2002"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nvidia:metrox-2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2CBE1921-C790-488B-8B8B-228C4DBC2D7E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nvidia:mlnx-gw:*:*:*:*:lts:*:*:*", "vulnerable": true, "matchCriteriaId": "495C879B-B556-4FF0-9B1A-5196147E8A81", "versionEndExcluding": "8.1.4400"}, {"criteria": "cpe:2.3:o:nvidia:mlnx-gw:*:*:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "353A9872-AFB8-4242-9942-0E7C4383DD7D", "versionEndExcluding": "8.2.2000"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nvidia:skyway:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "59E40D6B-8182-4448-A57C-E300F9750A7A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nvidia:onyx:*:*:*:*:lts:*:*:*", "vulnerable": true, "matchCriteriaId": "26CF254C-1556-4D77-9423-C4DD973B8CE5", "versionEndExcluding": "3.10.4402"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nvidia:nvda-os_xc:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BD3E5FC6-48B3-4911-92EE-258F5FDE40FC", "versionEndExcluding": "18.2.2000"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:nvidia:metrox-3_xc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5440361F-B691-419C-94F1-B457873463B2"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt@nvidia.com"}