CVE-2021-1071

3 documents3 sources
Severity
5.5MEDIUM
EPSS
0.1%
top 83.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Nvidia Linux FOR Tegra
Timeline
PublishedJan 26
Latest updateMay 24

Description

NVIDIA Tegra kernel in Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, all L4T versions prior to r32.5, contains a vulnerability in the INA3221 driver in which improper access control may lead to unauthorized users gaining access to system power usage data, which may lead to information disclosure.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:NExploitability: 1.1 | Impact: 4.0

Affected Packages1 packages

NVDnvidia/linux< r32.5

🔴Vulnerability Details

2
GHSA
GHSA-x5j5-724p-xrf3: NVIDIA Tegra kernel in Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, all L4T versions prior to r322022-05-24
CVEList
CVE-2021-1071: NVIDIA Tegra kernel in Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, all L4T versions prior to r322021-01-26
CVE-2021-1071 (MEDIUM CVSS 5.5) | NVIDIA Tegra kernel in Jetson AGX X | cvebase.io