What is CVE-2026-24153?

CVE-2026-24153 is a medium-severity vulnerability in Nvidia Jetson Xavier Series, Orin Series And Thor, classified under Trust Boundary Violation. CVSS score: 5.2/10. Published 2026-03-31.

How severe is CVE-2026-24153?

Medium severity. CVSS v3 base score is 5.2 out of 10.

Vulnerability in Nvidia Jetson Xavier Series, Orin Series And Thor

CVE-2026-24153

NVIDIA Jetson Linux has a vulnerability in initrd, where the nvluks trusted application is not disabled. A successful exploit of this vulnerability might lead to information disclosure.

EPSS: 0.000 (2.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.2 (Medium). Vector: CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N.

Affected products

Nvidia Jetson Xavier Series, Orin Series And Thor — versions All versions prior to 35.6.4, All versions prior to 36.5, 38.2

Weakness classification (CWE)

CWE-501 — Trust Boundary Violation

References

nvd.nist.gov/vuln/detail/CVE-2026-24153
www.cve.org/CVERecord
nvidia.custhelp.com/app/answers/detail/a_id/5797

Frequently asked questions

What is CVE-2026-24153?: CVE-2026-24153 is a medium-severity vulnerability in Nvidia Jetson Xavier Series, Orin Series And Thor, classified under Trust Boundary Violation. CVSS score: 5.2/10. Published 2026-03-31.
How severe is CVE-2026-24153?: Medium severity. CVSS v3 base score is 5.2 out of 10.