Improper Access Control in NVIDIA Linux Kernel Distributions
CVE-2021-34401

7.8HIGH

Key Information:

Vendor: Nvidia
Status: Shield Tv
Vendor: CVE Published:; 18 January 2022

What is CVE-2021-34401?

NVIDIA Linux kernel distributions exhibit a security flaw in the nvmap NVGPU_IOCTL_CHANNEL_SET_ERROR_NOTIFIER, stemming from improper access controls. This vulnerability can potentially lead to unauthorized code execution, compromising system integrity, or causing denial of service, posing significant risks to system administrators and users.

Affected Version(s)

SHIELD TV All versions prior to SE 9.0

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5259

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 18, 2022
Vulnerability Reserved
Jun 9, 2021

Nvidia

What is CVE-2021-34401?

Affected Version(s)

References

CVSS V3.1

Timeline