Buffer Overflow Vulnerability in NVIDIA Video Driver for Android Devices
CVE-2016-6917

7.8HIGH

Key Information:

Vendor

Nvidia
Status
Shield Tablet Firmware
Vendor
CVE Published:
24 April 2017

What is CVE-2016-6917?

A buffer overflow exists in the NVIDIA video driver for Android, specifically within the nvhost_job.c file. This vulnerability impacts Shield TV models prior to OTA 3.3, Shield Tablets before OTA 4.4, and Shield Tablet TK1 versions below OTA 1.5, potentially allowing malicious code execution and system compromise if exploited.

References

https://nvidia.custhelp.com/app/answers/detail/a_id/4276/...
x_refsource_CONFIRM
https://source.android.com/security/bulletin/2016-12-01
x_refsource_CONFIRM
http://www.securityfocus.com/bid/94667
vdb-entryx_refsource_BID

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.