Information Disclosure Vulnerability in NVIDIA Jetson Linux
CVE-2025-23269

4.7MEDIUM

Key Information:

Vendor: Nvidia
Status: Jetson Orin And Xavier Devices
Vendor: CVE Published:; 17 July 2025

What is CVE-2025-23269?

A vulnerability exists in NVIDIA Jetson Linux where attackers can exploit a flaw in the kernel's microarchitectural predictor state. This may lead to unintentional exposure of sensitive information through transient execution methods. Successful exploitation can undermine the integrity of secured data, emphasizing the need for immediate patches and updates to safeguard against potential data breaches.

Affected Version(s)

Jetson Orin and Xavier Devices Jetson Linux NVIDIA Jetson Orin Series All versions prior to JP5.x: 35.6.2

Jetson Orin and Xavier Devices Jetson Linux NVIDIA Jetson Orin Series All versions prior to JP6.x: 36.4.4

Jetson Orin and Xavier Devices Jetson Linux NVIDIA Xavier Series All versions prior to JP5.x: 35.6.2

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5662

CVSS V3.1

Score:

4.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 17, 2025
Vulnerability Reserved
Jan 14, 2025

Nvidia

What is CVE-2025-23269?

Affected Version(s)

References

CVSS V3.1

Timeline