CVE-2021-1111
 
Severity Score
6.7
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Bootloader contains a vulnerability in the NV3P server where any user with physical access through USB can trigger an incorrect bounds check, which may lead to buffer overflow, resulting in limited information disclosure, limited data integrity, and denial of service across all components.
El gestor de arranque contiene una vulnerabilidad en el servidor NV3P en la que cualquier usuario con acceso físico a través de USB puede desencadenar una comprobación de límites incorrecta, lo que puede provocar un desbordamiento del búfer, dando lugar a una divulgación de información limitada, una integridad de datos limitada y una denegación de servicio en todos los componentes
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2020-11-12 CVE Reserved
- 2021-08-11 CVE Published
- 2024-04-26 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
- CWE-125: Out-of-bounds Read
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5216 | 2022-07-08 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | >= 32.1 < 32.6.1 Search vendor "Nvidia" for product "Jetson Linux" and version " >= 32.1 < 32.6.1" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Agx Xavier Search vendor "Nvidia" for product "Jetson Agx Xavier" | - | - |
Safe
|
Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | >= 32.1 < 32.6.1 Search vendor "Nvidia" for product "Jetson Linux" and version " >= 32.1 < 32.6.1" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Tx2 Search vendor "Nvidia" for product "Jetson Tx2" | - | - |
Safe
|
Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | >= 32.1 < 32.6.1 Search vendor "Nvidia" for product "Jetson Linux" and version " >= 32.1 < 32.6.1" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Tx2 Nx Search vendor "Nvidia" for product "Jetson Tx2 Nx" | - | - |
Safe
|
Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | >= 32.1 < 32.6.1 Search vendor "Nvidia" for product "Jetson Linux" and version " >= 32.1 < 32.6.1" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Xavier Nx Search vendor "Nvidia" for product "Jetson Xavier Nx" | - | - |
Safe
|