CVE-2026-24154
CVE-2026-24154
7.6
HighPublished:
Last updated:
Source:psirt@nvidia.com
Analyzed
Weakness (CWE)
CVSS Vector
v3.1- Attack Vector
- Physical
- Attack Complexity
- Low
- Privileges Required
- None
- User Interaction
- None
- Scope
- Changed
- Confidentiality
- High
- Integrity
- High
- Availability
- High
Description
NVIDIA Jetson Linux has vulnerability in initrd, where an unprivileged attacker with physical access coul inject incorrect command line arguments. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, denial of service, data tampering, and information disclosure.
References
psirt@nvidia.com
https://nvd.nist.gov/vuln/detail/CVE-2026-24154psirt@nvidia.com
https://nvidia.custhelp.com/app/answers/detail/a_id/5797psirt@nvidia.com
https://www.cve.org/CVERecord?id=CVE-2026-24154