CVE-2021-1071 Information

Description

NVIDIA Tegra kernel in Jetson AGX Xavier Series Jetson Xavier NX TX1 TX2 Nano and Nano 2GB all L4T versions prior to r32.5 contains a vulnerability in the INA3221 driver in which improper access control may lead to unauthorized users gaining access to system power usage data which may lead to information disclosure.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Reference

https://nvidia.custhelp.com/app/answers/detail/a_id/5147

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

NONE

Base Score

NONE

Base Severity

5.5