11 matches found
CVE-2018-3639
CVE-2018-3639 is a speculative execution side‑channel vulnerability (SSB) that can leak memory via speculative stores. The Connected ALMA doc notes a mitigation: SSB is disabled by the new alt-java launcher, reducing impact at the cost of performance, and it references OpenJDK 8u282 as part of th...
CVE-2018-6269
CVE-2018-6269 affects NVIDIA Jetson TX1/TX2 via the Tegra Linux Driver Package (L4T) kernel driver. The IOCTL handling for user-mode requests could dereference non-trusted pointers, potentially leading to information disclosure, denial of service, privilege escalation, or code execution. NVIDIA’s...
CVE-2019-5673
CVE-2019-5673 affects NVIDIA Jetson TX1/TX2 running Linux for Tegra (pre-R28.3). The kernel driver’s ARM SMMU fault-condition check can discard transactions, potentially enabling local denial of service. NVIDIA’s NVIDIA Jetson TX1/TX2 Security Bulletin (April 2019) and the linked NVIDIA updates t...
CVE-2019-5672
CVE-2019-5672 affects NVIDIA Jetson TX1/TX2 running Linux for Tegra (L4T) prior to R28.3, where SSH keys in the sample rootfs are not replaced with unique host keys after generation/flash, potentially leading to information disclosure. The NVIDIA Security Bulletin lists updates for Jetson TX1/TX2...
CVE-2018-6239
CVE-2018-6239 affects NVIDIA Jetson TX2 (Tegra Linux Driver Package). The issue is tied to speculative execution where local, unprivileged code could access contents cached in an unauthorized manner, potentially leading to information disclosure. The NVIDIA advisory notes that all affected TX2/Li...
CVE-2021-1105
CVE-2021-1105 affects NVIDIA GPU and Tegra hardware, stemming from a vulnerability in the internal microcontroller that could allow a user with elevated privileges to access debug registers at runtime, potentially leading to information disclosure. Connected documents corroborate that the impact ...
CVE-2021-1088
Summary: CVE-2021-1088 affects NVIDIA GPU/Tegra hardware via an internal microcontroller vulnerability that may allow a user with elevated privileges to exploit debug mechanisms with insufficient access control, potentially leading to information disclosure. The CVE applies to multiple NVIDIA arc...
CVE-2021-1125
CVE-2021-1125 affects NVIDIA GPU and Tegra hardware. A vulnerability in the internal microcontroller could allow a user with elevated privileges (local access, HIGH privileges) to corrupt program data. The public records describe this as a local impact with no user interaction, and the CVSS/metri...
CVE-2021-23219
CVE-2021-23219 affects NVIDIA GPU and Tegra hardware via an internal microcontroller vulnerability. The issue could allow a user with elevated privileges to access protected information by identifying, exploiting, and loading vulnerable microcode, potentially leading to information disclosure. Af...
CVE-2021-34399
The CVE-2021-34399 entry refers to a vulnerability in NVIDIA GPU and Tegra hardware where an internal microcontroller could permit a user with elevated privileges to access information from unscrubbed registers, potentially leading to information disclosure. Connected NVIDIA materials enumerate a...
CVE-2021-34400
The CVE-2021-34400 entry describes a vulnerability in the internal microcontroller of NVIDIA GPU and Tegra hardware that may allow a user with elevated privileges to access information from unscrubbed memory, leading to information disclosure. Affected components include NVIDIA GPU and Tegra micr...