Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Shield_experience
(Nvidia)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 17 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-01-18 | CVE-2021-34405 | NVIDIA Linux distributions contain a vulnerability in TrustZone’s TEE_Malloc function, where an unchecked return value causing a null pointer dereference may lead to denial of service. | Shield_experience | 5.5 | ||
| 2022-01-18 | CVE-2021-34402 | NVIDIA Tegra kernel driver contains a vulnerability in NVIDIA NVDEC, where a user with high privileges might be able to read from or write to a memory location that is outside the intended boundary of the buffer, which may lead to denial of service, Information disclosure, loss of Integrity, or possible escalation of privileges. | Shield_experience | 6.7 | ||
| 2021-08-11 | CVE-2021-1106 | NVIDIA Linux kernel distributions contain a vulnerability in nvmap, where writes may be allowed to read-only buffers, which may result in escalation of privileges, complete denial of service, unconstrained information disclosure, and serious data tampering of all processes on the system. | Jetson_linux, Shield_experience | 7.8 | ||
| 2021-08-11 | CVE-2021-1107 | NVIDIA Linux kernel distributions contain a vulnerability in nvmap NVMAP_IOC_WRITE* paths, where improper access controls may lead to code execution, complete denial of service, and seriously compromised integrity of all system components. | Jetson_linux, Shield_experience | 7.8 | ||
| 2021-08-11 | CVE-2021-1108 | NVIDIA Linux kernel distributions contain a vulnerability in FuSa Capture (VI/ISP), where integer underflow due to lack of input validation may lead to complete denial of service, partial integrity, and serious confidentiality loss for all processes in the system. | Jetson_linux, Shield_experience | 7.3 | ||
| 2022-01-18 | CVE-2021-34404 | Android images for T210 provided by NVIDIA contain a vulnerability in BROM, where failure to limit access to AHB-DMA when BROM fails may allow an unprivileged attacker with physical access to cause denial of service or impact integrity and confidentiality beyond the security scope of BROM. | Shield_experience | 7.6 | ||
| 2022-01-18 | CVE-2021-34401 | NVIDIA Linux kernel distributions contain a vulnerability in nvmap NVGPU_IOCTL_CHANNEL_SET_ERROR_NOTIFIER, where improper access control may lead to code execution, compromised integrity, or denial of service. | Shield_experience | 7.8 | ||
| 2022-01-18 | CVE-2021-34403 | NVIDIA Linux distributions contain a vulnerability in nvmap ioctl, which allows any user with a local account to exploit a use-after-free condition, leading to code privilege escalation, loss of confidentiality and integrity, or denial of service. | Shield_experience | 7.8 | ||
| 2022-01-18 | CVE-2021-34406 | NVIDIA Tegra kernel driver contains a vulnerability in NVHost, where a specific race condition can lead to a null pointer dereference, which may lead to a system reboot. | Shield_experience | 4.7 | ||
| 2021-01-20 | CVE-2021-1069 | NVIDIA SHIELD TV, all versions prior to 8.2.2, contains a vulnerability in the NVHost function, which may lead to abnormal reboot due to a null pointer reference, causing data loss. | Linux_for_tegra, Shield_experience | 6.1 |