Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

NVIDIA TX1 Boot ROM Vulnerability

cisco-sa-20180620-nvidia-tx1-rom · Medium · Published · Updated

On April 24, 2018, researchers disclosed a vulnerability that takes advantage of a buffer overflow vulnerability in NVIDIA TX1 BootROM when Recovery Mode (RCM) is active. This vulnerability could allow an unprivileged, local attacker to bypass secure boot and execute unverified code on an affected system. The vulnerability has been identified by CVE-2018-6242. To exploit this vulnerability, an attacker must be able to physically access the device along with the affected processor’s USB connection. This vulnerability cannot be exploited remotely, even if the device is connected to the Internet. Cisco has identified all products that use the NVIDIA TX1 processor and has released software updates to address this vulnerability. The software update will permanently disable the ability to activate RCM. Should customers attempt to downgrade their software version, the ability to activate RCM will no longer be available. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180620-nvidia-tx1-rom

Cisco advisory · CSAF JSON

Workarounds

There are no workarounds that address this vulnerability.

CVEsCVE-2018-6242
Cisco Bug IDsCSCvj27020
CVSS ScoreBase 6.8
Base 6.8 CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:X
Product Names From Source
Cisco WebEx Codec Plus, Cisco WebEx Room 55, Cisco WebEx Room 70 Single/Dual, Cisco WebEx Room Kit, Cisco WebEx Room Kit Plus

Related Products

Product CVE Evidence
Cisco WebEx Room Kit Plus CVE-2018-6242 Cisco OpenVuln
Cisco WebEx Room Kit CVE-2018-6242 Cisco OpenVuln
Cisco WebEx Room 70 Single/Dual CVE-2018-6242 Cisco OpenVuln
Cisco WebEx Room 55 CVE-2018-6242 Cisco OpenVuln
Cisco WebEx Codec Plus CVE-2018-6242 Cisco OpenVuln