Unrated severityNVD Advisory· Published Jul 19, 2019· Updated Aug 4, 2024

CVE-2019-5680

Description

In NVIDIA Jetson TX1 L4T R32 version branch prior to R32.2, Tegra bootloader contains a vulnerability in nvtboot in which the nvtboot-cpu image is loaded without the load address first being validated, which may lead to code execution, denial of service, or escalation of privileges.

Affected products

Nvidia/Jetson Tx1llm-create2 versions
< L4T R32.2+ 1 more
- (no CPE)range: < L4T R32.2
- (no CPE)range: R32 versions prior to 32.2

Patches

Vulnerability mechanics

References

www.securityfocus.com/bid/109341mitrevdb-entryx_refsource_BID
nvidia.custhelp.com/app/answers/detail/a_id/4804mitrex_refsource_CONFIRM
nvidia.custhelp.com/app/answers/detail/a_id/4835mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000