Vulnerability in NVIDIA Shield TV Experience Leading to Potential Code Execution
CVE-2019-5679

7.8HIGH

Key Information:

Vendor: Nvidia
Status: Shield Tv
Vendor: CVE Published:; 6 August 2019

Summary

A vulnerability exists in the NVIDIA Shield TV Experience and NVIDIA Tegra bootloader where the Trusted OS image is inadequately authenticated. This flaw could allow attackers to execute arbitrary code, facilitate denial of service attacks, or lead to unauthorized escalation of privileges, potentially exposing sensitive information.

Affected Version(s)

SHIELD TV SHIELD Experience prior to v8.0

References

https://nvidia.custhelp.com/app/answers/detail/a_id/4804

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 6, 2019
Vulnerability Reserved
Jan 7, 2019