NVIDIA Jetson AGX Orin and IGX Orin Improper Input Validation Vulnerability Allowing Privilege Escalation

A vulnerability exists in NVIDIA Jetson AGX Orin series and NVIDIA IGX Orin software, where an attacker can exploit improper input validation to escalate certain permissions. This vulnerability could lead to code execution, denial of service, data corruption, information disclosure, or unauthorized privilege escalation.

Impact

Exploitation of this vulnerability could result in unauthorized code execution, a denial of service, data corruption, information disclosure, or unauthorized privilege escalation.

Remediation

Users can upgrade to Jetson Linux version 36.4.3 or 35.6, depending on their current version. For IGX Orin, users should upgrade to IGX OS version 1.1.