Memory Disclosure Vulnerability in NVIDIA GPU and Tegra Hardware
CVE-2021-34400

4.1MEDIUM

Key Information:

Vendor: Nvidia
Status: Nvidia Gpu And Tegra Hardware
Vendor: CVE Published:; 20 November 2021

Summary

A vulnerability exists in NVIDIA GPU and Tegra hardware, specifically within the internal microcontroller architecture. This issue involves the potential for users with elevated privileges to access sensitive information residing in unscrubbed memory. If exploited, this vulnerability could lead to unauthorized access to confidential data, highlighting the importance of maintaining security measures around device configurations and user access privileges.

Affected Version(s)

NVIDIA GPU and Tegra hardware Turing, Volta, Pascal, Maxwell, Tegra X1, Tegra X1+, Tegra TX2, Xavier

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5263

x_refsource_CONFIRM

CVSS V3.1

Score:

4.1

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 20, 2021
Vulnerability Reserved
Jun 9, 2021