NVIDIA Jetson Linux has vulnerability in initrd, where an unprivileged attacker with physical access coul inject incorrect command line arguments. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, denial of service, data tampering, and information disclosure.
References
| Link | Resource |
|---|---|
| https://nvd.nist.gov/vuln/detail/CVE-2026-24154 | Third Party Advisory US Government Resource |
| https://nvidia.custhelp.com/app/answers/detail/a_id/5797 | Vendor Advisory |
| https://www.cve.org/CVERecord?id=CVE-2026-24154 | Third Party Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
03 Apr 2026, 19:04
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://nvd.nist.gov/vuln/detail/CVE-2026-24154 - Third Party Advisory, US Government Resource | |
| References | () https://nvidia.custhelp.com/app/answers/detail/a_id/5797 - Vendor Advisory | |
| References | () https://www.cve.org/CVERecord?id=CVE-2026-24154 - Third Party Advisory | |
| CPE | cpe:2.3:h:nvidia:jetson_agx_xavier_industrial:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_orin_nano_8gb:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_agx_orin_64gb:-:*:*:*:*:*:*:* cpe:2.3:o:nvidia:jetson_linux:38.2:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_orin_nano_4gb:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_orin_nx_8gb:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_orin_nano_super_developer_kit:-:*:*:*:*:*:*:* cpe:2.3:o:nvidia:jetson_linux:*:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_orin_nx_16gb:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_agx_orin_developer_kit:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_xavier_nx_16gb:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_agx_orin_32gb:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_agx_orin_industrial:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_agx_thor_developer_kit:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_agx_xavier_64gb:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_agx_xavier_32gb:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_xavier_nx_8gb:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_t5000:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:jetson_t4000:-:*:*:*:*:*:*:* |
|
| First Time |
Nvidia
Nvidia jetson T5000 Nvidia jetson Agx Thor Developer Kit Nvidia jetson T4000 Nvidia jetson Orin Nano 8gb Nvidia jetson Xavier Nx 8gb Nvidia jetson Linux Nvidia jetson Xavier Nx 16gb Nvidia jetson Orin Nx 8gb Nvidia jetson Agx Xavier Industrial Nvidia jetson Agx Xavier 64gb Nvidia jetson Agx Xavier 32gb Nvidia jetson Agx Orin Developer Kit Nvidia jetson Orin Nano Super Developer Kit Nvidia jetson Agx Orin Industrial Nvidia jetson Agx Orin 64gb Nvidia jetson Orin Nano 4gb Nvidia jetson Orin Nx 16gb Nvidia jetson Agx Orin 32gb |
31 Mar 2026, 17:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-03-31 17:16
Updated : 2026-04-03 19:04
NVD link : CVE-2026-24154
Mitre link : CVE-2026-24154
CVE.ORG link : CVE-2026-24154
JSON object : View
Products Affected
nvidia
- jetson_t5000
- jetson_agx_thor_developer_kit
- jetson_orin_nx_16gb
- jetson_agx_orin_32gb
- jetson_xavier_nx_16gb
- jetson_orin_nano_4gb
- jetson_linux
- jetson_orin_nano_super_developer_kit
- jetson_orin_nx_8gb
- jetson_orin_nano_8gb
- jetson_agx_xavier_32gb
- jetson_t4000
- jetson_xavier_nx_8gb
- jetson_agx_xavier_industrial
- jetson_agx_orin_industrial
- jetson_agx_orin_developer_kit
- jetson_agx_xavier_64gb
- jetson_agx_orin_64gb
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')