CVE-2022-28193
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrabl_cbo.c, where insufficient validation of untrusted data may allow a local attacker with elevated privileges to cause a memory buffer overflow, which may lead to code execution, loss of integrity, limited denial of service, and some impact to confidentiality.
El paquete de controladores de NVIDIA Jetson para Linux contiene una vulnerabilidad en el módulo Cboot tegrabl_cbo.c, en el que una validación insuficiente de los datos que no son de confianza puede permitir a un atacante local con privilegios elevados provocar un desbordamiento del búfer de memoria, lo que puede llevar a la ejecución de código, pérdida de integridad, denegación de servicio limitada y algún impacto en la confidencialidad
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-03-30 CVE Reserved
- 2022-04-27 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
- CWE-787: Out-of-bounds Write
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5343 | 2023-06-28 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | < 32.7.2 Search vendor "Nvidia" for product "Jetson Linux" and version " < 32.7.2" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Agx Xavier Search vendor "Nvidia" for product "Jetson Agx Xavier" | - | - |
Safe
|
Nvidia Search vendor "Nvidia" | Jetson Linux Search vendor "Nvidia" for product "Jetson Linux" | < 32.7.2 Search vendor "Nvidia" for product "Jetson Linux" and version " < 32.7.2" | - |
Affected
| in | Nvidia Search vendor "Nvidia" | Jetson Xavier Nx Search vendor "Nvidia" for product "Jetson Xavier Nx" | - | - |
Safe
|