Information Disclosure Vulnerability in NVIDIA TrustZone Software
CVE-2017-6295

8.4HIGH

Key Information:

Vendor: Nvidia
Status: Shield Tv
Vendor: CVE Published:; 6 March 2018

What is CVE-2017-6295?

NVIDIA TrustZone Software has a vulnerability in its Keymaster implementation that allows the software to access memory outside of the designated buffer, potentially leading to information disclosure or service interruptions. This flaw highlights the critical importance of secure buffer management and proper input validation in safeguarding sensitive data.

Affected Version(s)

SHIELD TV NA

References

http://nvidia.custhelp.com/app/answers/detail/a_id/4631

x_refsource_CONFIRM

CVSS V3.1

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 6, 2018
Vulnerability Reserved
Feb 23, 2017

Nvidia

What is CVE-2017-6295?

Affected Version(s)

References

CVSS V3.1

Timeline