CVE-2022-28195

Name of the Vulnerable Software and Affected Versions NVIDIA Jetson Linux Driver Package (affected versions not specified)

Description The issue is related to insufficient validation of untrusted data in the Cboot ext4 read file function, which may lead to an integer overflow. This could allow a highly privileged local attacker to execute code, escalate privileges, cause a limited denial of service, and impact confidentiality and integrity. The scope of impact can extend to other components.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.