Insufficient Granularity of Access Control in NVIDIA ConnectX NIC Firmware: Denial of Service Vulnerability

CVE-2023-0203 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can exploit insufficient granularity of access control, which may lead to denial of service.

Learn more about our User Device Pen Test.