CVE-2025-23270

High CVSS: 7.1

NVIDIA Jetson Linux contains a vulnerability in UEFI Management mode, where an unprivileged local attacker may cause exposure of sensitive information via a side channel vulnerability. A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, and information disclosure.

Vendor

Product

CWE

CWE-392

Yayın Tarihi

2025-07-17 20:15:28

Güncelleme

2025-07-17 21:15:50

Source Identifier

psirt@nvidia.com

KEV Date Added

Kategoriler

CWE-392 HIGH 2025

Referanslar

https://nvidia.custhelp.com/app/answers/detail/a_id/5662