R24.2.2

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

nvidia

NVD

Published: 2021-01-26

Updated: 2021-02-04

Summary

NVIDIA Tegra kernel in Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, all L4T versions prior to r32.5, contains a vulnerability in the INA3221 driver in which improper access control may lead to unauthorized users gaining access to system power usage data, which may lead to information disclosure.

Vulnerable Configurations

Part	Description	Count
OS	Nvidia Nvidia Linux FOR Tegra - Nvidia Linux FOR Tegra R21.6 Nvidia Linux FOR Tegra R24.2.2	3
Hardware	Nvidia Nvidia Jetson AGX Xavier - Nvidia Jetson Nano - Nvidia Jetson Nano 2GB - Nvidia Jetson TX1 - Nvidia Jetson TX2 - Nvidia Jetson Xavier NX -	6

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5147