Vulnerability Description
NVIDIA Linux kernel distributions contain a vulnerability in nvmap, where writes may be allowed to read-only buffers, which may result in escalation of privileges, complete denial of service, unconstrained information disclosure, and serious data tampering of all processes on the system.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Jetson Linux | >= 32.1, < 32.6.1 |
| Nvidia | Jetson Agx Xavier | - |
| Nvidia | Jetson Nano | - |
| Nvidia | Jetson Nano 2Gb | - |
| Nvidia | Jetson Tx1 | - |
| Nvidia | Jetson Tx2 | - |
| Nvidia | Jetson Tx2 Nx | - |
| Nvidia | Jetson Xavier Nx | - |
| Nvidia | Shield Experience | < 9.0 |
| Nvidia | Shield Tv | - |
Related Weaknesses (CWE)
References
- https://nvidia.custhelp.com/app/answers/detail/a_id/5216Vendor Advisory
- https://nvidia.custhelp.com/app/answers/detail/a_id/5259Vendor Advisory
- https://nvidia.custhelp.com/app/answers/detail/a_id/5216Vendor Advisory
- https://nvidia.custhelp.com/app/answers/detail/a_id/5259Vendor Advisory
FAQ
What is CVE-2021-1106?
CVE-2021-1106 is a vulnerability with a CVSS score of 7.8 (HIGH). NVIDIA Linux kernel distributions contain a vulnerability in nvmap, where writes may be allowed to read-only buffers, which may result in escalation of privileges, complete denial of service, unconstr...
How severe is CVE-2021-1106?
CVE-2021-1106 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-1106?
Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Jetson Linux, Nvidia Jetson Agx Xavier, Nvidia Jetson Nano, Nvidia Jetson Nano 2Gb, Nvidia Jetson Tx1.