{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-21T18:45:42.492","vulnerabilities":[{"cve":{"id":"CVE-2025-23337","sourceIdentifier":"psirt@nvidia.com","published":"2025-09-17T23:15:36.500","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"NVIDIA HGX & DGX GB200, GB300, B300  contain a vulnerability in the HGX Management Controller (HMC) that may allow a malicious actor with administrative access on the BMC to access the HMC as an administrator. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering."},{"lang":"es","value":"NVIDIA HGX & DGX GB200, GB300, B300 contienen una vulnerabilidad en el Controlador de Gestión HGX (HMC) que podría permitir a un actor malicioso con acceso administrativo en el BMC acceder al HMC como administrador. Un exploit exitoso de esta vulnerabilidad podría conducir a la ejecución de código, denegación de servicio, escalada de privilegios, revelación de información y manipulación de datos."}],"metrics":{"cvssMetricV31":[{"source":"psirt@nvidia.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":6.7,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.8,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@nvidia.com","type":"Secondary","description":[{"lang":"en","value":"CWE-1244"}]}],"references":[{"url":"https://nvidia.custhelp.com/app/answers/detail/a_id/5692","source":"psirt@nvidia.com"}]}}]}