CVE-2022-28196

Name of the Vulnerable Software and Affected Versions NVIDIA Jetson Linux Driver Package (affected versions not specified)

Description The issue is related to insufficient validation of untrusted data in the Cboot blob decompress function, which may allow a local attacker with elevated privileges to cause a memory buffer overflow. This could lead to code execution, limited loss of integrity, and limited denial of service. The scope of impact can extend to other components.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.