CVE-2022-42270

Summary

NVIDIA distributions of Linux contain a vulnerability in nvdla_emu_task_submit, where unvalidated input may allow a local attacker to cause stack-based buffer overflow in kernel code, which may lead to escalation of privileges, compromised integrity and confidentiality, and denial of service.

Affected Software

VendorProductVersion RangeStatus
NVIDIANVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, Jetson AGX Orin SeriesVersions 35.1 and 34.1.1affected
NVIDIANVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, Jetson AGX Orin Series32.7.2 and prior releasesaffected

Weaknesses

  • CWE-121: CWE-121: Stack-based Buffer Overflow

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References