DMA Write Vulnerability in NVIDIA GPU and Tegra Hardware
CVE-2021-23217
7.5HIGH
Key Information:
- Vendor
Nvidia
- Vendor
- CVE Published:
- 20 November 2021
What is CVE-2021-23217?
NVIDIA's GPU and Tegra hardware expose a vulnerability in their internal microcontroller. This flaw allows users with elevated privileges to initiate a Direct Memory Access (DMA) write operation within a restricted time frame, potentially leading to malicious code execution. This vulnerability could compromise the confidentiality, integrity, and availability of affected systems, with possible implications for various system components.
Affected Version(s)
NVIDIA GPU and Tegra hardware Maxwell, GP100, Tegra X1, Tegra X1+, Tegra TX2