CVE-2021-34382
Severity CVSS v4.0:
Pending analysis
Type:
CWE-190
Integer Overflow or Wraparound
Publication date:
30/06/2021
Last modified:
07/11/2023
Description
Trusty TLK contains a vulnerability in the NVIDIA TLK kernel’s tz_map_shared_mem function where an integer overflow on the size parameter causes the request buffer and the logging buffer to overflow, allowing writes to arbitrary addresses within the kernel.
Impact
Base Score 3.x
7.80
Severity 3.x
HIGH
Base Score 2.0
4.60
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:nvidia:jetson_linux:*:*:*:*:*:*:*:* | 32.5.1 (excluding) | |
cpe:2.3:h:nvidia:jetson_tx1:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page