In NVIDIA Jetson TX1 L4T R32 version branch prior to R32.2, Tegra bootloader contains a vulnerability in nvtboot in which the nvtboot-cpu image is loaded without the load address first being validated, which may lead to code execution, denial of service, or escalation of privileges.
[
{
"product": "NVIDIA Jetson TX1",
"vendor": "NVIDIA",
"versions": [
{
"status": "affected",
"version": "R32 versions prior to 32.2"
}
]
}
]