Main Vulnerability Database Vulnerabilities #VU55586

#VU55586 Buffer overflow in nVidia products - CVE-2021-1111

Published: August 4, 2021

Vulnerability identifier: #VU55586

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2021-1111

CWE-ID: CWE-119

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Jetson AGX Xavier series
Jetson Xavier NX
Jetson TX2 series
Jetson TX2 NX

Software vendor:
nVidia

Description

The vulnerability allows an attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in Bootloader. An attacker with physical access through USB to the system can trigger memory corruption and execute arbitrary code.

Remediation

Install updates from vendor's website.

External links

https://nvidia.custhelp.com/app/answers/detail/a_id/5216

#VU55586 Buffer overflow in nVidia products - CVE-2021-1111

Description

Remediation

External links

Please verify you're human