Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-0104

NVIDIA Mellanox OS, ONYX, Skyway, MetroX-2 and MetroX-3 XC contain a vulnerability in the LDAP AAA component, where a user can cause improper access. A successful exploit of this vulnerability might lead to information disclosure, data tampering, and escalation of privileges.

Published

2024-08-08T18:15:09.800

Last Modified

2024-12-26T19:44:22.577

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.2 (MEDIUM)

Weaknesses

Type: Secondary
CWE-284
Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	nvidia	onyx	< 3.10.4402	Yes
Operating System	nvidia	mlnx-os	< 3.11.2002	Yes
Hardware	nvidia	tq8100-hs2f	-	No
Hardware	nvidia	tq8200-hs2f	-	No
Operating System	nvidia	mlnx-gw	< 8.2.2000	Yes
Hardware	nvidia	mga100-hs2	-	No
Operating System	nvidia	nvda-os_xc	< 18.2.2000	Yes
Hardware	nvidia	mtq8400-hs2r	-	No
Operating System	nvidia	mlnx-os	< 3.11.2202	Yes

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5559 Vendor Advisory ([email protected])