NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrabl_cbo.c, where insufficient validation of untrusted data may allow a local attacker with elevated privileges to cause a memory buffer overflow, which may lead to code execution, loss of integrity, limited denial of service, and some impact to confidentiality.
References
Link | Resource |
---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5343 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
28 Jun 2023, 13:51
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-787 |
14 Oct 2022, 02:35
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 4.6
v3 : 5.6 |
30 May 2022, 18:15
Type | Values Removed | Values Added |
---|---|---|
Summary | NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrabl_cbo.c, where insufficient validation of untrusted data may allow a local attacker with elevated privileges to cause a memory buffer overflow, which may lead to code execution, loss of integrity, limited denial of service, and some impact to confidentiality. |
06 May 2022, 13:33
Type | Values Removed | Values Added |
---|---|---|
First Time |
Nvidia jetson Linux
Nvidia jetson Agx Xavier Nvidia jetson Xavier Nx Nvidia |
|
CWE | CWE-20 | |
CPE | cpe:2.3:h:nvidia:jetson_agx_xavier:-:*:*:*:*:*:*:* cpe:2.3:o:nvidia:jetson_linux:*:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_xavier_nx:-:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : 4.6
v3 : 6.6 |
References | (MISC) https://nvidia.custhelp.com/app/answers/detail/a_id/5343 - Vendor Advisory |
27 Apr 2022, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-04-27 18:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-28193
Mitre link : CVE-2022-28193
CVE.ORG link : CVE-2022-28193
JSON object : View
Products Affected
nvidia
- jetson_agx_xavier
- jetson_xavier_nx
- jetson_linux