CVE-2017-6278

Name: CVE-2017-6278
Creator: NVD / NIST
Published: 2018-03-26T16:29:00.287+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 0.33%

Last modified Jun 17, 2026

CVE-2017-6278 is a vulnerability of currently unknown severity. NVIDIA Tegra kernel contains a vulnerability in the CORE DVFS Thermal driver where there is the potential to read or write a buffer using an index or pointer that references a memory location after the end of the buffer, which may lead to a denial of service or possible escalation of privileges.. EPSS estimates a 0.33% chance of exploitation in the next 30 days.

Description

NVIDIA Tegra kernel contains a vulnerability in the CORE DVFS Thermal driver where there is the potential to read or write a buffer using an index or pointer that references a memory location after the end of the buffer, which may lead to a denial of service or possible escalation of privileges.

Metrics

EPSS Probability

0.33%

24.2th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-119

Affected Software

Vendor	Product	Versions
Nvidia	Jetson Tx1 Firmware	<= 24.2.2
Nvidia	Jetson Tx1 Firmware	<= 28.1
Nvidia	Jetson Tk1 Firmware	<= 21.6
Nvidia	Tegra K1 Firmware	<= 21.6

References

Timeline

Published: Mar 26, 2018
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2017-6278?

How severe is CVE-2017-6278?

Severity scoring for CVE-2017-6278 is pending analysis. The EPSS model estimates a 0.33% probability of exploitation in the next 30 days.

How do I fix CVE-2017-6278?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2017-6278?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST