CVE-2025-23270

HIGH EPSS 8.4%

Published Jul 17, 202511mo ago · Modified Jun 17, 20261w ago

7.1 CVSS 3.1

High

Published Jul 17, 2025 11mo ago

Last Modified Jun 17, 2026 1w ago

Description

NVIDIA Jetson Linux contains a vulnerability in UEFI Management mode, where an unprivileged local attacker may cause exposure of sensitive information via a side channel vulnerability. A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, and information disclosure.

CVSS Details

Base Score

7.1

Exploitability

0.5

Impact

6.0

Vector string

CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Attack Vector Physical

Attack Complexity High

Privileges Required None

User Interaction None

Scope Changed

Confidentiality High

Integrity High

Availability High

Threat Intelligence

EPSS Exploit Probability

8.4% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-392

References 1

nvidia.custhelp.com https://nvidia.custhelp.com/app/answers/detail/a_id/5662

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.