CVE-2021-1070
HIGHNVIDIA Jetson AGX Xavier Series - Privilege Escalation
Title source: llmDescription
NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, L4T versions prior to 32.5, contains a vulnerability in the apply_binaries.sh script used to install NVIDIA components into the root file system image, in which improper access control is applied, which may lead to an unprivileged user being able to modify system device tree files, leading to denial of service.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://nvidia.custhelp.com/app/answers/detail/a_id/5147
Scores
CVSS v3
7.1
EPSS
0.0004
EPSS Percentile
13.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Details
Status
published
Products (1)
nvidia/linux_for_tegra
< r32.5
Published
Jan 26, 2021
Tracked Since
Feb 18, 2026