CVE-2026-24154 HIGH

CVE-2026-24154

Vendor Nvidia
Product Jetson Xavier Series, Jetson Orin Series and Jetson Thor
Weakness CWE-78
Published March 31, 2026
Last update March 31, 2026

CVSS base score

7.6/10
Attack vector Physical
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

NVIDIA Jetson Linux has vulnerability in initrd, where an unprivileged attacker with physical access coul inject incorrect command line arguments. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, denial of service, data tampering, and information disclosure.

Key dates

02Disclosure timeline

March 31, 2026 CVE published
March 31, 2026 Record updated