Vulnerabilities > CVE-2017-6282 - Write-what-where Condition vulnerability in multiple products

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

nvidia

google

CWE-123

NVD

Published: 2018-03-06

Updated: 2018-03-27

Summary

NVIDIA Tegra kernel driver contains a vulnerability in NVMAP where an attacker has the ability to write an arbitrary value to an arbitrary location which may lead to an escalation of privileges. This issue is rated as high.

Vulnerable Configurations

Part	Description	Count
OS	Nvidia Nvidia Shield TV Firmware *	1
OS	Google Google Android -	1
Hardware	Nvidia Nvidia Shield TV -	1

Common Weakness Enumeration (CWE)

CWE-123 - Write-what-where Condition

References

http://nvidia.custhelp.com/app/answers/detail/a_id/4631