Integer Overflow Vulnerability in NVIDIA Trusty Kernel Function
CVE-2021-34390

5.3MEDIUM

Key Information:

Vendor: Nvidia
Status: Nvidia Jetson Tx1
Vendor: CVE Published:; 22 June 2021

Summary

NVIDIA Trusty contains a vulnerability in its kernel function due to insufficient checks, allowing an integer overflow during a specific Secure Monitor Call (SMC) initiated by a user. This flaw could be exploited to cause denial of service, affecting the stability of the affected systems. Users are encouraged to stay updated with patches and security measures.

Affected Version(s)

NVIDIA Jetson TX1 All Jetson Linux versions prior to r32.5.1

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5205

x_refsource_CONFIRM

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Jun 22, 2021
Vulnerability Reserved
Jun 9, 2021