CVE-2026-24148 - Vulnerability Analysis

Overview

NVIDIA Jetson for JetPack contains a misconfiguration vulnerability in system initialization logic, letting unprivileged attackers cause insecure resource initialization, leading to information disclosure, data tampering, and partial denial of service.

Severity & Score

Impact

Unprivileged attackers can cause information disclosure, data tampering, and partial denial of service on devices sharing the same machine ID.

Mitigation

Update to the latest version of JetPack to address the insecure default initialization.

References

• https://nvd.nist.gov/vuln/detail/CVE-2026-24148
• https://nvidia.custhelp.com/app/answers/detail/a_id/5797
• https://www.cve.org/CVERecord?id=CVE-2026-24148

Related Resources

• Vulnerability Intelligence Dashboard
• Credential Scanner