CVE-2017-6261

HIGH

NVIDIA Vibrante Linux 1.1, 2.0, 2.2 - Denial of Service or Information Disclosure via Insufficient Protection Mechanisms

Title source: llm

Description

NVIDIA Vibrante Linux version 1.1, 2.0, and 2.2 contains a vulnerability in the user space driver in which protection mechanisms are insufficient, may lead to denial of service or information disclosure.

References (1)

Core 1

Core References

Exploit, Technical Description, Third Party Advisory x_refsource_misc

https://data.hackinn.com/ppt/BlackHat-USA-2018/us-18-Liu-Over-The-Air-How-We-Remotely-Compromised-The-Gateway-Bcm-And-Autopilot-Ecus-Of-Tesla-Cars-wp.pdf

Scores

CVSS v3 8.2

EPSS 0.0007

EPSS Percentile 20.4%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Details

CWE

CWE-20 CWE-693

Status published

Products (3)

nvidia/vibrante_linux 1.1

nvidia/vibrante_linux 2.0

nvidia/vibrante_linux 2.2

Published Jun 05, 2019

Tracked Since Feb 18, 2026