CVE-2018-6269
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver where input/output control (IOCTL) handling for user mode requests could create a non-trusted pointer dereference, which may lead to information disclosure, denial of service, escalation of privileges, or code execution. The updates apply to all versions prior to R28.3.
NVIDIA Jetson versión TX2 contiene una vulnerabilidad en el controlador del kernel donde el manejo del control de entrada y salida (IOCTL) para las peticiones de modo de usuario podría crear una falta de confianza en la eliminación del puntero, lo que podría conllevar a la revelación de información, denegación de servicio, escalado de privilegios o ejecución de código . Las actualizaciones se aplican a todas las versiones anteriores a R28.3.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2018-01-25 CVE Reserved
- 2019-04-12 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-732: Incorrect Permission Assignment for Critical Resource
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://nvidia.custhelp.com/app/answers/detail/a_id/4804 | X_refsource_confirm |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://nvidia.custhelp.com/app/answers/detail/a_id/4787 | 2019-10-03 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Nvidia Search vendor "Nvidia" | Jetson Tx2 Search vendor "Nvidia" for product "Jetson Tx2" | < r28.3 Search vendor "Nvidia" for product "Jetson Tx2" and version " < r28.3" | - |
Affected
| ||||||