Main Vulnerability Database Vulnerabilities #VU105381

Internal Asset Exposed to Unsafe Debug Access Level or State in Hopper HGX 8-GPU - CVE-2024-0114

Published: March 6, 2025

Vulnerability identifier: #VU105381

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2024-0114

CWE-ID: CWE-1244

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: nVidia

Affected software:
Hopper HGX 8-GPU

Detailed vulnerability description

The vulnerability allows a local user to execute arbitrary code on the target system.

The vulnerability exists due to internal asset exposed to unsafe debug access level or state in the HGX Management Controller (HMC). A local administrator can execute arbitrary code on the target system.

How to mitigate CVE-2024-0114

Install updates from vendor's website.

Sources

https://nvidia.custhelp.com/app/answers/detail/a_id/5561

Internal Asset Exposed to Unsafe Debug Access Level or State in Hopper HGX 8-GPU - CVE-2024-0114

Detailed vulnerability description

How to mitigate CVE-2024-0114

Sources

Please verify you're human