CVE-2024-0114

HIGH8.1

NVIDIA Hopper HGX for 8-GPU contains a vulnerability in the HGX Management Controller (HMC) that may allow a malicious actor with administrative access on the BMC to access the HMC as an administrator

Published Mar 5, 2025

Modified 3 months ago

Details

NVIDIA Hopper HGX for 8-GPU contains a vulnerability in the HGX Management Controller (HMC) that may allow a malicious actor with administrative access on the BMC to access the HMC as an administrator. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.

References

WEB

https://nvidia.custhelp.com/app/answers/detail/a_id/5561

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2024-0114

CVSS Analysis

CVSS v3.1

8.1

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

HighPR:H

User Interaction

NoneUI:N

Scope

ChangedS:C

Impact

Confidentiality

LowC:L

Integrity

HighI:H

Availability

HighA:H

8.1/CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:H

Weakness Type (CWE)

Other

CWE-1244

Ecosystems

Timeline

PublishedMar 5, 2025

ModifiedFeb 26, 2026