cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-0108,https://securityvulnerability.io/vulnerability/CVE-2024-0108,"NVIDIA Jetson Linux Vulnerability Allows Denial of Service, Code Execution, and Privilege Escalation","The NVIDIA Jetson Linux platform is affected by a vulnerability in the GPU Memory Management Unit (MMU) mapping process, specifically within the NvGPU error handling functions. When a mapping operation fails, the paths intended for error handling inadequately clean up the failed attempt, which could potentially be exploited by an attacker. This flaw may result in a denial of service and provide opportunities for code execution, raising serious concerns around privilege escalation and system integrity.",Nvidia,"Nvidia Jetson Agx Xavier Series, Jetson Xavier Nx, Jetson Tx2 Series, Jetson Tx2 Nx, Jetson Tx1, Jetson Nano Series",8.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-08-08T16:18:27.914Z,0
CVE-2021-34385,https://securityvulnerability.io/vulnerability/CVE-2021-34385,Heap Overflow Vulnerability in NVIDIA TLK Kernel,NVIDIA's Trusty TLK kernel has a heap overflow vulnerability caused by an integer overflow during length calculations. This flaw could potentially allow an attacker to manipulate system memory leading to unexpected behavior or unauthorized access.,Nvidia,Nvidia Jetson Tx1,6.3,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-06-30T10:24:38.000Z,0
CVE-2021-34382,https://securityvulnerability.io/vulnerability/CVE-2021-34382,Integer Overflow Vulnerability in NVIDIA TLK Kernel,"NVIDIA's Trusty TLK kernel is susceptible to an integer overflow vulnerability within the tz_map_shared_mem function. This flaw arises when the size parameter is processed, causing an overflow in both the request buffer and the logging buffer. This vulnerability potentially allows for unauthorized writes to arbitrary addresses in the kernel, which could lead to further exploitation of the system. It's crucial for users and administrators to be aware of this issue and to apply necessary patches to protect their systems.",Nvidia,Nvidia Jetson Tx1,6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-06-30T10:24:35.000Z,0
CVE-2021-34380,https://securityvulnerability.io/vulnerability/CVE-2021-34380,Heap Overflow Vulnerability in NVIDIA Bootloader,"A vulnerability in the NVIDIA bootloader (MB2) allows for a potential heap overflow, which may corrupt the heap metadata. This could enable attackers to execute arbitrary code, disrupt service availability, or disclose sensitive information during the secure boot process.",Nvidia,"Nvidia Jetson Tx1, Tx2 Series, Tx2 Nx, Agx Xavier Series, Xavier Nx, Nano And Nano 2gb",7,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-06-30T10:24:34.000Z,0
CVE-2021-34381,https://securityvulnerability.io/vulnerability/CVE-2021-34381,Integer Overflow Vulnerability in NVIDIA Trusty TLK,"The NVIDIA Trusty TLK has a vulnerability in the kernel function due to insufficient checks in the tz_map_shared_mem function, which can lead to an integer overflow concerning the size parameter. This flaw enables potential attackers to exploit the system, resulting in denial of service, unauthorized information disclosure, or unauthorized data manipulation.",Nvidia,Nvidia Jetson Tx1,6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-06-30T10:24:34.000Z,0
CVE-2021-34373,https://securityvulnerability.io/vulnerability/CVE-2021-34373,Heap Overflow Vulnerability in NVIDIA Trusted Linux Kernel,"The NVIDIA Trusted Linux Kernel contains a vulnerability characterized by inadequate heap hardening, which can lead to potential heap overflows. This weakness may result in unauthorized information exposure and could also allow attackers to cause a denial of service, compromising system availability.",Nvidia,Nvidia Jetson Tx1,7.9,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-06-30T10:24:27.000Z,0
CVE-2021-34395,https://securityvulnerability.io/vulnerability/CVE-2021-34395,Access Control Vulnerability in Trusty TLK by NVIDIA,"Trusty TLK by NVIDIA is vulnerable due to improper access permission settings, which allow users with local privileges to access resources they should not. This flaw can potentially lead to some information disclosure, a slight risk of data modification, and a minimal chance of denial of service. Proper mitigation measures should be implemented to safeguard against these risks.",Nvidia,Nvidia Jetson Tx1,3.9,LOW,0.0004199999966658652,false,,false,false,false,,,false,false,,2021-06-22T21:25:30.000Z,0
CVE-2021-34392,https://securityvulnerability.io/vulnerability/CVE-2021-34392,Integer Overflow Vulnerability in NVIDIA Trusty TLK Kernel,"The NVIDIA Trusty TLK kernel is vulnerable to an integer overflow in the tz_map_shared_mem function, which can allow attackers to bypass important boundary checks. This exploitation could potentially result in a denial of service, affecting the stability of systems utilizing the Trusty TLK. Users are encouraged to check for updates and apply necessary patches to mitigate this risk.",Nvidia,Nvidia Jetson Tx1,4.4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-06-22T21:25:25.000Z,0
CVE-2021-34391,https://securityvulnerability.io/vulnerability/CVE-2021-34391,Integer Overflow Vulnerability in NVIDIA Trusty Kernel Function,"A vulnerability exists in the NVIDIA Trusty kernel function that enables an integer overflow due to insufficient checks when handling specific SMC calls. This flaw can be triggered by user interaction and may potentially lead to a denial of service, compromising system stability and performance.",Nvidia,Nvidia Jetson Tx1,5.3,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-06-22T21:25:24.000Z,0
CVE-2021-34390,https://securityvulnerability.io/vulnerability/CVE-2021-34390,Integer Overflow Vulnerability in NVIDIA Trusty Kernel Function,"NVIDIA Trusty contains a vulnerability in its kernel function due to insufficient checks, allowing an integer overflow during a specific Secure Monitor Call (SMC) initiated by a user. This flaw could be exploited to cause denial of service, affecting the stability of the affected systems. Users are encouraged to stay updated with patches and security measures.",Nvidia,Nvidia Jetson Tx1,5.3,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-06-22T21:25:22.000Z,0
CVE-2021-34388,https://securityvulnerability.io/vulnerability/CVE-2021-34388,Heap Overflow Vulnerability in NVIDIA TegraBoot,"NVIDIA TegraBoot contains a vulnerability that could allow an attacker to exploit a heap overflow. This security flaw may enable unauthorized manipulation of memory allocation, potentially leading to control over RAM regions following the affected heap block. As a result, this could facilitate denial of service attacks or unauthorized code execution, posing significant risks to system integrity and security.",Nvidia,"Nvidia Jetson Tx1, Tx2 Series, Tx2 Nx, Agx Xavier Series, Xavier Nx, Nano And Nano 2gb",6.3,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-06-21T21:35:17.000Z,0
CVE-2021-34387,https://securityvulnerability.io/vulnerability/CVE-2021-34387,Access Permission Flaw in ARM TrustZone Technology Affecting NVIDIA Products,"The vulnerability in NVIDIA's ARM TrustZone technology arises from improper access permission settings, where the portion of DRAM allocated for TrustZone is incorrectly identity-mapped by the Trusty OS with read, write, and execute permissions. This misconfiguration allows unauthorized write access to kernel code and data that should otherwise remain read-only, potentially jeopardizing system integrity and security.",Nvidia,Nvidia Jetson Tx1,6.3,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-06-21T21:35:16.000Z,0
CVE-2021-34386,https://securityvulnerability.io/vulnerability/CVE-2021-34386,Integer Overflow Vulnerability in NVIDIA Trusty TLK Kernel,"The NVIDIA Trusty TLK kernel contains a critical vulnerability resulting from an integer overflow in the size calculation within the calloc function. This issue occurs when the multiplication of count and size exceeds the maximum limit, potentially leading to heap overflows. Such vulnerabilities can be exploited to execute arbitrary code or cause system crashes, undermining the integrity and security of affected systems.",Nvidia,Nvidia Jetson Tx1,6.3,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-06-21T21:35:14.000Z,0
CVE-2021-1070,https://securityvulnerability.io/vulnerability/CVE-2021-1070,Access Control Weakness in NVIDIA Jetson Products,"NVIDIA's Jetson AGX Xavier series and related models have a vulnerability in the apply_binaries.sh script, which allows for improper access control during the installation of NVIDIA components. This flaw can enable unprivileged users to modify critical system device tree files, which may lead to a denial of service. Users should ensure that their systems are updated to L4T version 32.5 or later to mitigate this risk.",Nvidia,"Nvidia Jetson Agx Xavier Series, Jetson Xavier Nx, Tx1, Tx2, Nano And Nano 2gb",7.1,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-01-26T21:20:14.000Z,0
CVE-2021-1071,https://securityvulnerability.io/vulnerability/CVE-2021-1071,Improper Access Control in NVIDIA Tegra Kernel Affects Jetson Devices,"The NVIDIA Tegra kernel in various Jetson devices has an improper access control vulnerability found in the INA3221 driver. This flaw may allow unauthorized users to access system power usage data, leading to potential information disclosure. This issue affects all L4T versions prior to r32.5, highlighting the need for users to update their systems promptly for security.",Nvidia,"Nvidia Jetson Agx Xavier Series, Jetson Xavier Nx, Tx1, Tx2, Nano And Nano 2gb",5.6,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-01-26T21:20:14.000Z,0
CVE-2020-5974,https://securityvulnerability.io/vulnerability/CVE-2020-5974,,"NVIDIA JetPack SDK, version 4.2 and 4.3, contains a vulnerability in its installation scripts in which permissions are incorrectly set on certain directories, which can lead to escalation of privileges.",Nvidia,"Nvidia Jetson Agx Xavier, Tx1, Tx2, And Nano L4t",7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2020-07-08T23:15:00.000Z,0
CVE-2019-5680,https://securityvulnerability.io/vulnerability/CVE-2019-5680,,"In NVIDIA Jetson TX1 L4T R32 version branch prior to R32.2, Tegra bootloader contains a vulnerability in nvtboot in which the nvtboot-cpu image is loaded without the load address first being validated, which may lead to code execution, denial of service, or escalation of privileges.",Nvidia,Nvidia Jetson Tx1,6.7,MEDIUM,0.0007699999841861427,false,,false,false,false,,,false,false,,2019-07-19T19:57:04.000Z,0