The Tegra X1 is certainly one of Nvidia’s newest cellular processors, powering gadgets just like the Nintendo Transfer, Google Pixel C, and Nvidia Defend. It is not unusual that vulnerabilities are came upon in SoCs, and that has simply came about for the Tegra X1. Katherine Temkin and the ReSwitched hacking workforce have simply launched information about a safety flaw, nicknamed ‘Fusée Gelée,’ that permits unauthenticated arbitrary code execution on gadgets the use of the Tegra chip.
You’ll be able to learn all of the main points on the supply hyperlink under, however to summarize, Fusée Gelée takes benefit of a flaw within the Tegra X1’s USB restoration mode. By means of sending a malformed command all through the bootROM’s USB keep watch over process, code will also be copied into the safe software stack. This permits the attacker to run arbitrary code at the tool.
The workforce put in combination an evidence of idea for the Nintendo Transfer, as noticed within the symbol above. Because the Pixel C and Nvidia Defend use the similar processor, it is very most probably the vulnerability impacts the ones gadgets as smartly. As written within the documentation, “Get right of entry to to the fuses had to configure the tool’s ipatches was once blocked when the ODM_PRODUCTION fuse was once burned, so no bootROM replace is imaginable.” In different phrases, the vulnerability cannot be mounted on current gadgets.
The workforce has supplied all details about the exploit to Nintendo and Nvidia, so long run revisions of the X1 most certainly would possibly not be prone to the worm. Within the period in-between, you most likely should not retailer govt secrets and techniques in your Defend or Pixel C.