Vulnerability Description
Trusty contains a vulnerability in TSEC TA which deserializes the incoming messages even though the TSEC TA does not expose any command. This vulnerability might allow an attacker to exploit the deserializer to impact code execution, causing information disclosure.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Jetson Linux | < 32.5.1 |
| Nvidia | Jetson Agx Xavier 16Gb | - |
| Nvidia | Jetson Agx Xavier 32Gb | - |
| Nvidia | Jetson Agx Xavier 8Gb | - |
| Nvidia | Jetson Tx1 | - |
| Nvidia | Jetson Tx2 | - |
| Nvidia | Jetson Tx2 4Gb | - |
| Nvidia | Jetson Tx2 Nx | - |
| Nvidia | Jetson Tx2I | - |
| Nvidia | Jetson Xavier Nx | - |
Related Weaknesses (CWE)
References
- https://nvidia.custhelp.com/app/answers/detail/a_id/5205Vendor Advisory
- https://nvidia.custhelp.com/app/answers/detail/a_id/5205Vendor Advisory
FAQ
What is CVE-2021-34393?
CVE-2021-34393 is a vulnerability with a CVSS score of 4.2 (MEDIUM). Trusty contains a vulnerability in TSEC TA which deserializes the incoming messages even though the TSEC TA does not expose any command. This vulnerability might allow an attacker to exploit the deser...
How severe is CVE-2021-34393?
CVE-2021-34393 has been rated MEDIUM with a CVSS base score of 4.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-34393?
Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Jetson Linux, Nvidia Jetson Agx Xavier 16Gb, Nvidia Jetson Agx Xavier 32Gb, Nvidia Jetson Agx Xavier 8Gb, Nvidia Jetson Tx1.