CVSS 3.1 Score 9.8 of 10 (high)


Published Sep 20, 2023
Updated: Sep 22, 2023


CVE-2023-31009 is a vulnerability found in NVIDIA DGX H100 BMC's REST service, allowing an attacker to exploit improper input validation. This vulnerability can result in code execution, denial of service, escalation of privileges, and information disclosure. The affected product is the sh-m5y. To remediate this vulnerability, it is recommended to apply the latest security patches or updates provided by NVIDIA. If left unaddressed, this vulnerability poses a high potential danger to organizations as it can be exploited remotely over a network without the need for user interaction, leading to significant impacts on confidentiality, integrity, and availability of the system.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-31009 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options