← back
CVE-2021-1106

CVE-2021-1106

CVSS 7.8 HIGHEPSS 0.3%
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.8EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
11 Aug 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
NVIDIA Linux kernel distributions contain a vulnerability in nvmap, where writes may be allowed to read-only buffers, which may result in escalation of privileges, complete denial of service, unconstrained information disclosure, and serious data tampering of all processes on the system.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
NVIDIA · Jetson AGX Xavier series, Jetson Xavier NX, Jetson TX2 series, Jetson TX2 NX, Jetson Nano, Jetson Nano 2GB, Jetson TX1NVIDIA · Shield TV

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://nvidia.custhelp.com/app/answers/detail/a_id/5216https://nvidia.custhelp.com/app/answers/detail/a_id/5259