CVE-2021-34394
Severity Score
6.7
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Trusty contains a vulnerability in the NVIDIA OTE protocol that is present in all TAs. An incorrect message stream deserialization allows an attacker to use the malicious CA that is run by the user to cause the buffer overflow, which may lead to information disclosure and data modification.
Trusty contiene una vulnerabilidad en el protocolo NVIDIA OTE que está presente en todos los AT. Una deserialización incorrecta del flujo de mensajes permite a un atacante utilizar la AC maliciosa que ejecuta el usuario para provocar el desbordamiento del búfer, lo que puede llevar a la divulgación de información y a la modificación de datos
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2021-06-09 CVE Reserved
- 2021-06-22 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-502: Deserialization of Untrusted Data
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://nvidia.custhelp.com/app/answers/detail/a_id/5205 | 2021-09-20 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | < 32.5.1 Search vendor "Nvidia" for product "Jetson Linux" and version " < 32.5.1" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Agx Xavier 16gb Search vendor "Nvidia" for product "Jetson Agx Xavier 16gb" | - | - |
Safe
|
| Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | < 32.5.1 Search vendor "Nvidia" for product "Jetson Linux" and version " < 32.5.1" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Agx Xavier 32gb Search vendor "Nvidia" for product "Jetson Agx Xavier 32gb" | - | - |
Safe
|
| Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | < 32.5.1 Search vendor "Nvidia" for product "Jetson Linux" and version " < 32.5.1" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Agx Xavier 8gb Search vendor "Nvidia" for product "Jetson Agx Xavier 8gb" | - | - |
Safe
|
| Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | < 32.5.1 Search vendor "Nvidia" for product "Jetson Linux" and version " < 32.5.1" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Tx2 Search vendor "Nvidia" for product "Jetson Tx2" | - | - |
Safe
|
| Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | < 32.5.1 Search vendor "Nvidia" for product "Jetson Linux" and version " < 32.5.1" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Tx2 4gb Search vendor "Nvidia" for product "Jetson Tx2 4gb" | - | - |
Safe
|
| Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | < 32.5.1 Search vendor "Nvidia" for product "Jetson Linux" and version " < 32.5.1" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Tx2 Nx Search vendor "Nvidia" for product "Jetson Tx2 Nx" | - | - |
Safe
|
| Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | < 32.5.1 Search vendor "Nvidia" for product "Jetson Linux" and version " < 32.5.1" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Tx2i Search vendor "Nvidia" for product "Jetson Tx2i" | - | - |
Safe
|
| Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | < 32.5.1 Search vendor "Nvidia" for product "Jetson Linux" and version " < 32.5.1" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Xavier Nx Search vendor "Nvidia" for product "Jetson Xavier Nx" | - | developer_kit |
Safe
|
| Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | < 32.5.1 Search vendor "Nvidia" for product "Jetson Linux" and version " < 32.5.1" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Xavier Nx Search vendor "Nvidia" for product "Jetson Xavier Nx" | - | production |
Safe
|