CVE-2024-0112Improper Input Validation in Nvidia IGX Orin

CWE-20Improper Input Validation3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.1%
top 84.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Nvidia IGX Orin
Timeline
PublishedFeb 12

Description

NVIDIA Jetson AGX Orin™ and NVIDIA IGX Orin software contain a vulnerability where an attacker can cause an improper input validation issue by escalating certain permissions to a limited degree. A successful exploit of this vulnerability might lead to code execution, denial of service, data corruption, information disclosure, or escalation of privilege.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:HExploitability: 0.8 | Impact: 6.0

Affected Packages1 packages

CVEListV5nvidia/igx_orinAll versions prior to IGX 1.1

🔴Vulnerability Details

2
GHSA
GHSA-fwf2-5x9w-mqc9: NVIDIA Jetson AGX Orin™ and NVIDIA IGX Orin software contain a vulnerability where an attacker can cause an improper input validation issue by escalat2025-02-12
CVEList
CVE-2024-0112: NVIDIA Jetson AGX Orin™ and NVIDIA IGX Orin software contain a vulnerability where an attacker can cause an improper input validation issue by escalat2025-02-11
CVE-2024-0112 — Improper Input Validation in Nvidia | cvebase