Security Bulletin: NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, Jetson TX1, Jetson TX2 Series (including Jetson TX2 NX) - April 2022

Search CVEs in bulletin 2022/5343 by description or CWE

Back to Year | Home
Year: 2022 | Bulletin: 5343
Title: Security Bulletin: NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, Jetson TX1, Jetson TX2 Series (including Jetson TX2 NX) - April 2022
Updated: 2022-05-26T00:00:00Z
CVEs: 3
Search by CVE count, CVE description, or CWE.
Matching CVEs: 3
No matching CVEs found.
DateScopeCVE / Details
2022-05-26
2022 11 bulletins
5343 3 CVEs
CVE-2022-28196
CWE-20
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot blob_decompress function, where insufficient validation of untrusted data may allow a local attacker with elevated privileges to cause a memory buffer overflow, which may lead to code execution, limited loss of Integrity, and limited denial of service. The scope of impact can extend to other components.
Security Bulletin: NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, Jetson TX1, Jetson TX2 Series (including Jetson TX2 NX) - April 2022
NVIDIA has released a software update for NVIDIA® Jetson AGX Xavier™ series, Jetson Xavier™ NX, Jetson TX1, Jetson TX2 series (including Jetson TX2 NX) in the NVIDIA JetPack™ software development kit (SDK). The update addresses security issues that may lead to denial of service, escalation of privileges, and impacts to data integrity and confidentiality. To protect your system, download and install the latest NVIDIA JetPack SDK from <a href="https://developer.nvidia.com/embedded/downloads">NVIDIA DevZone</a>.
2022-05-26
2022 11 bulletins
5343 3 CVEs
CVE-2022-28194
CWE-119
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrabl_cbo.c, where, if TFTP is enabled, a local attacker with elevated privileges can cause a memory buffer overflow, which may lead to code execution, loss of Integrity, limited denial of service, and some impact to confidentiality.
Security Bulletin: NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, Jetson TX1, Jetson TX2 Series (including Jetson TX2 NX) - April 2022
NVIDIA has released a software update for NVIDIA® Jetson AGX Xavier™ series, Jetson Xavier™ NX, Jetson TX1, Jetson TX2 series (including Jetson TX2 NX) in the NVIDIA JetPack™ software development kit (SDK). The update addresses security issues that may lead to denial of service, escalation of privileges, and impacts to data integrity and confidentiality. To protect your system, download and install the latest NVIDIA JetPack SDK from <a href="https://developer.nvidia.com/embedded/downloads">NVIDIA DevZone</a>.
2022-05-26
2022 11 bulletins
5343 3 CVEs
CVE-2022-28193
CWE-20
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrabl_cbo.c, where insufficient validation of untrusted data may allow a local attacker with elevated privileges to cause a memory buffer overflow, which may lead to code execution, loss of integrity, limited denial of service, and some impact to confidentiality.
Security Bulletin: NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, Jetson TX1, Jetson TX2 Series (including Jetson TX2 NX) - April 2022
NVIDIA has released a software update for NVIDIA® Jetson AGX Xavier™ series, Jetson Xavier™ NX, Jetson TX1, Jetson TX2 series (including Jetson TX2 NX) in the NVIDIA JetPack™ software development kit (SDK). The update addresses security issues that may lead to denial of service, escalation of privileges, and impacts to data integrity and confidentiality. To protect your system, download and install the latest NVIDIA JetPack SDK from <a href="https://developer.nvidia.com/embedded/downloads">NVIDIA DevZone</a>.