Information Disclosure Vulnerability in NVIDIA GPU and Tegra Hardware
CVE-2021-1105

4.1MEDIUM

Key Information:

Vendor: Nvidia
Status: Nvidia Gpu And Tegra Hardware
Vendor: CVE Published:; 20 November 2021

Summary

NVIDIA GPU and Tegra hardware suffer from a vulnerability in the internal microcontroller that permits users with elevated privileges to access sensitive debug registers during runtime. This unauthorized access could potentially lead to the disclosure of critical information. Users should ensure that their systems are updated and monitor for any security advisories from NVIDIA.

Affected Version(s)

NVIDIA GPU and Tegra hardware Turing, Volta, Pascal, Maxwell, Tegra X1, Tegra X1+, Tegra TX2, Xavier

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5263

x_refsource_CONFIRM

CVSS V3.1

Score:

4.1

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 20, 2021
Vulnerability Reserved
Nov 12, 2020