Improper Authentication in NVIDIA Jetson Linux UEFI Vulnerability
CVE-2025-33182

7.6HIGH

Key Information:

Vendor

Nvidia
Status
Jetson Orin Series
Jetson Xavier Series
Vendor
CVE Published:
14 October 2025

What is CVE-2025-33182?

NVIDIA Jetson Linux is vulnerable due to improper authentication in its UEFI implementation. This flaw allows a privileged user to manipulate the Linux Device Tree, potentially resulting in data tampering and denial of service. The exploitation of this vulnerability can have significant impacts on system integrity and reliability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Jetson Orin Series Linux 35.6.2 and earlier

Jetson Xavier Series Linux 35.6.2 and earlier

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5716

CVSS V3.1

Score:
7.6
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.