CVE-2019-5680

Summary

In NVIDIA Jetson TX1 L4T R32 version branch prior to R32.2, Tegra bootloader contains a vulnerability in nvtboot in which the nvtboot-cpu image is loaded without the load address first being validated, which may lead to code execution, denial of service, or escalation of privileges.

Affected Software

VendorProductVersion RangeStatus
NVIDIANVIDIA Jetson TX1R32 versions prior to 32.2affected

Weaknesses

  • code execution/denial of service/escalation of privileges

ADP Enrichment

CVE Program Container

Additional References

References