Microcontroller Vulnerability in NVIDIA GPU and Tegra Hardware
CVE-2021-23201
7.5HIGH
Key Information:
- Vendor
Nvidia
- Vendor
- CVE Published:
- 20 November 2021
What is CVE-2021-23201?
NVIDIA GPUs and Tegra hardware have an internal microcontroller vulnerability that enables users with elevated privileges to generate valid microcode. By identifying and exploiting this vulnerability, attackers could load compromised microcode, potentially leading to significant issues like information disclosure, data corruption, or denial of service. The impact of this vulnerability could extend beyond the immediate affected components.
Affected Version(s)
NVIDIA GPU and Tegra hardware Turing, Volta, Pascal, Maxwell, Tegra X1, Tegra X1+, Tegra TX2, Xavier