NVIDIA Security Updates Fix Critical Device Vulnerabilities
ID: 06c7c278-4a5a-573d-92a7-60ea1ec29360
STIX ID: report--06c7c278-4a5a-573d-92a7-60ea1ec29360
Feed Name: securityonline.info
Threat Score
NVIDIA released patches for 13 vulnerabilities across BlueField, ConnectX, and Megatron Bridge platforms — including two critical CVEs allowing local arbitrary code execution via VF access (CVSS 9.0) and several high-severity Megatron deserialization/input-validation flaws (CVSS 7.8). Administrators are urged to apply firmware updates for BlueField/ConnectX and upgrade Megatron Bridge to 0.4.1 or later; no public PoC or in-the-wild exploitation has been reported.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
