Nvidia Jetson_xavier_nx
43 CVEs affecting Nvidia Jetson_xavier_nx. Latest disclosed: 2024-08-08. Critical: 0, High: 19.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-0108 | High | 8.7 | 2024-08-08 | NVIDIA Jetson Linux contains a vulnerability in NvGPU where error handling paths in GPU MMU mapping code fail to clean up a failed mapping attempt. A successfu… |
CVE-2021-34372 | High | 8.2 | 2021-06-22 | Trusty (the trusted OS produced by NVIDIA for Jetson devices) driver contains a vulnerability in the NVIDIA OTE protocol message parsing code where an integer… |
CVE-2022-42269 | High | 7.9 | 2022-12-30 | NVIDIA Trusted OS contains a vulnerability in an SMC call handler, where failure to validate untrusted input may allow a highly privileged local attacker to ca… |
CVE-2022-42270 | High | 7.8 | 2022-12-30 | NVIDIA distributions of Linux contain a vulnerability in nvdla_emu_task_submit, where unvalidated input may allow a local attacker to cause stack-based buffer… |
CVE-2021-1107 | High | 7.8 | 2021-08-11 | NVIDIA Linux kernel distributions contain a vulnerability in nvmap NVMAP_IOC_WRITE* paths, where improper access controls may lead to code execution, complete… |
CVE-2021-1106 | High | 7.8 | 2021-08-11 | NVIDIA Linux kernel distributions contain a vulnerability in nvmap, where writes may be allowed to read-only buffers, which may result in escalation of privile… |
CVE-2021-34379 | High | 7.7 | 2021-06-30 | Trusty contains a vulnerability in the HDCP service TA where bounds checking in command 10 is missing. The length of an I/O buffer parameter is not checked, wh… |
CVE-2021-34378 | High | 7.7 | 2021-06-30 | Trusty contains a vulnerability in the HDCP service TA where bounds checking in command 11 is missing. Improper restriction of operations within the bounds of… |
CVE-2021-34377 | High | 7.7 | 2021-06-30 | Trusty contains a vulnerability in the HDCP service TA where bounds checking in command 9 is missing. Improper restriction of operations within the bounds of a… |
CVE-2021-34376 | High | 7.7 | 2021-06-30 | Trusty contains a vulnerability in the HDCP service TA where bounds checking in command 5 is missing. Improper restriction of operations within the bounds of a… |
CVE-2021-34375 | High | 7.7 | 2021-06-30 | Trusty contains a vulnerability in all trusted applications (TAs) where the stack cookie was not randomized, which might result in stack-based buffer overflow… |
CVE-2021-34374 | High | 7.7 | 2021-06-30 | Trusty contains a vulnerability in command handlers where the length of input buffers is not verified. This vulnerability can cause memory corruption, which ma… |
CVE-2022-28194 | High | 7.3 | 2022-04-27 | NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrabl_cbo.c, where, if TFTP is enabled, a local attacker with elevated privil… |
CVE-2021-1108 | High | 7.3 | 2021-08-11 | NVIDIA Linux kernel distributions contain a vulnerability in FuSa Capture (VI/ISP), where integer underflow due to lack of input validation may lead to complet… |
CVE-2021-1109 | High | 7.2 | 2021-08-11 | NVIDIA camera firmware contains a multistep, timing-related vulnerability where an unauthorized modification by camera resources may result in loss of data int… |
CVE-2023-25518 | High | 7.1 | 2023-06-23 | NVIDIA Jetson contains a vulnerability in CBoot, where the PCIe controller is initialized without IOMMU, which may allow an attacker with physical access to t… |
CVE-2021-1110 | High | 7.1 | 2021-08-11 | NVIDIA Linux kernel distributions on Jetson Xavier contain a vulnerability in camera firmware where a user can change input data after validation, which may le… |
CVE-2021-1070 | High | 7.1 | 2021-01-26 | NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, L4T versions prior to 32.5, contains a vulnerability in the apply_binaries.sh s… |
CVE-2021-34380 | High | 7.0 | 2021-06-30 | Bootloader contains a vulnerability in NVIDIA MB2 where potential heap overflow might cause corruption of the heap metadata, which might lead to arbitrary code… |
CVE-2021-1111 | Medium | 6.7 | 2021-08-11 | Bootloader contains a vulnerability in the NV3P server where any user with physical access through USB can trigger an incorrect bounds check, which may lead to… |