NVIDIA has patched a high-severity vulnerability affecting its UFM Enterprise, UFM Appliance, and UFM CyberAI products. could allow an attacker to gain escalated privileges, tamper with data, deny service, and disclose sensitive information.
The vulnerability, identified as CVE-2024-0130 with a CVSS score of 8.8, stems from an improper authentication issue that can be exploited by sending a malformed request through the Ethernet management interface. A successful exploit could grant an attacker unauthorized access and control over the affected systems.
Advertisements
NVIDIA urges users to update their systems immediately. The firmware update is available for download from the NVIDIA Enterprise Support Portal.
For more information refer to the advisory
