Primary

Context

NVIDIA Jetson Linux Microarchitectural Information Disclosure Vulnerability

Vulnerability

Patched

A vulnerability exists in the NVIDIA Jetson Linux kernel, where an attacker can exploit a shared microarchitectural predictor state that affects transient execution, leading to the exposure of sensitive information. This vulnerability is present in NVIDIA Jetson Orin, IGX Orin, and Xavier devices, in all versions prior to JP5.x: 35.6.2 and all versions prior to JP6.x: 36.4.4 for Jetson Orin, and all versions prior to JP5.x: 35.6.2 for Xavier. For IGX Orin, all versions prior to IGX 1.1.2 are affected.

Impact

Exploitation of this vulnerability can result in unauthorized information disclosure.

Remediation

Users can upgrade to NVIDIA Jetson Linux versions 35.6.2 or 36.4.4, depending on their current version. For IGX Orin, users should upgrade to IGX 1.1.2.

Added: Jul 17, 2025, 9:24 PM

Updated: Jul 17, 2025, 9:24 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

2.5

exploitability

3.5

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

2.5

exploitability

3.5

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NVIDIA Jetson Linux Microarchitectural Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

NVIDIA Jetson Orin

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating