Описание
NVIDIA Linux kernel distributions contain a vulnerability in nvmap, where writes may be allowed to read-only buffers, which may result in escalation of privileges, complete denial of service, unconstrained information disclosure, and serious data tampering of all processes on the system.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 32.1 (включая) до 32.6.1 (исключая)
Одновременно
cpe:2.3:o:nvidia:jetson_linux:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:nvidia:jetson_agx_xavier:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:jetson_nano:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:jetson_nano_2gb:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:jetson_tx1:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:jetson_tx2:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:jetson_tx2_nx:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:jetson_xavier_nx:-:*:*:*:*:*:*:*
Конфигурация 2Версия до 9.0 (исключая)
Одновременно
cpe:2.3:a:nvidia:shield_experience:*:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:shield_tv:-:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00112
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-787
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
NVIDIA Linux kernel distributions contain a vulnerability in nvmap, where writes may be allowed to read-only buffers, which may result in escalation of privileges, complete denial of service, unconstrained information disclosure, and serious data tampering of all processes on the system.
EPSS
Процентиль: 30%
0.00112
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-787