Описание
Bootloader contains a vulnerability in the NV3P server where any user with physical access through USB can trigger an incorrect bounds check, which may lead to buffer overflow, resulting in limited information disclosure, limited data integrity, and denial of service across all components.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 32.1 (включая) до 32.6.1 (исключая)
Одновременно
cpe:2.3:o:nvidia:jetson_linux:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:nvidia:jetson_agx_xavier:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:jetson_tx2:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:jetson_tx2_nx:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:jetson_xavier_nx:-:*:*:*:*:*:*:*
EPSS
Процентиль: 64%
0.00476
Низкий
6.7 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-119
CWE-125
Связанные уязвимости
CVSS3: 6.7
github
больше 3 лет назад
Bootloader contains a vulnerability in the NV3P server where any user with physical access through USB can trigger an incorrect bounds check, which may lead to buffer overflow, resulting in limited information disclosure, limited data integrity, and information disclosure across all components.
EPSS
Процентиль: 64%
0.00476
Низкий
6.7 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-119
CWE-125