Buffer Overflow Vulnerability in NVIDIA Bootloader NV3P Server
CVE-2021-1111
6.7MEDIUM
Key Information:
- Vendor
Nvidia
- Vendor
- CVE Published:
- 11 August 2021
What is CVE-2021-1111?
A buffer overflow vulnerability exists in the NV3P server of NVIDIA's Bootloader, allowing an adversary with physical access via USB to exploit an incorrect bounds check. This flaw may enable limited information disclosure, compromise data integrity, and cause a denial of service across multiple system components. Due to its design, the NV3P server is susceptible to unauthorized manipulation if physical access controls are not strictly enforced. Ensuring timely updates and access restrictions is crucial in mitigating potential risks associated with this vulnerability.
Affected Version(s)
NVIDIA Jetson AGX Xavier series, Jetson Xavier NX, Jetson TX2 series, Jetson TX2 NX All Jetson Linux versions prior to r32.6.1