Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistNvidiaCVELIST:CVE-2023-25520
HistoryJun 23, 2023 - 5:23 p.m.

CVE-2023-25520

2023-06-2317:23:21
CWE-20
nvidia
www.cve.org
4
nvidia jetson
linux driver package
nvbootctrl
privilege escalation
denial of service

CVSS3

4.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

AI Score

6

Confidence

High

EPSS

0

Percentile

5.1%

JSON

NVIDIA Jetson Linux Driver Package contains a vulnerability in nvbootctrl, where a privileged local attacker can configure invalid settings, resulting in denial of service.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Jetson AGX Xavier series, Jetson Xavier NX, Jetson TX2 series, Jetson TX2 NX",
    "vendor": "NVIDIA",
    "versions": [
      {
        "status": "affected",
        "version": "All versions prior to 32.7.4"
      }
    ]
  }
]

Related

cve 1
prion 1
nvd 1
nvidia 1
cve
cve
CVE-2023-25520
2023-06-23 18:15:11
prion
prion
Design/Logic Flaw
2023-06-23 18:15:00
nvd
nvd
CVE-2023-25520
2023-06-23 18:15:11
nvidia
nvidia
Security Bulletin: NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, Jetson TX1, Jetson TX2 Series (including Jetson TX2 NX), and Jetson Nano (including Jetson Nano 2GB) - June 2023
2023-06-23 00:00:00

CVSS3

4.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

AI Score

6

Confidence

High

EPSS

0

Percentile

5.1%

JSON
Related for CVELIST:CVE-2023-25520
cve1prion1nvd1nvidia1