CVE-2018-6240

HIGH

Android - Out-of-bounds Write in NVIDIA Tegra BootRom

Title source: llm
STIX 2.1

Description

NVIDIA Tegra contains a vulnerability in BootRom where a user with kernel level privileges can write an arbitrary value to an arbitrary physical address

References (3)

Core 3
Core References
Vendor Advisory x_refsource_confirm
https://nvidia.custhelp.com/app/answers/detail/a_id/4804
Vendor Advisory x_refsource_confirm
https://nvidia.custhelp.com/app/answers/detail/a_id/4910

Scores

CVSS v3 7.8
EPSS 0.0018
EPSS Percentile 7.8%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (1)
google/android
Published Sep 06, 2019
Tracked Since Feb 18, 2026