CVE-2023-25520

Summary

NVIDIA Jetson Linux Driver Package contains a vulnerability in nvbootctrl, where a privileged local attacker can configure invalid settings, resulting in denial of service.

Affected Software

VendorProductVersion RangeStatus
NVIDIAJetson AGX Xavier series, Jetson Xavier NX, Jetson TX2 series, Jetson TX2 NXAll versions prior to 32.7.4affected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References