Vulnerabilities > CVE-2021-34402 - Out-of-bounds Write vulnerability in Nvidia Shield Experience

CVSS 6.7 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

nvidia

CWE-787

NVD

Published: 2022-01-18

Updated: 2022-10-24

Summary

NVIDIA Tegra kernel driver contains a vulnerability in NVIDIA NVDEC, where a user with high privileges might be able to read from or write to a memory location that is outside the intended boundary of the buffer, which may lead to denial of service, Information disclosure, loss of Integrity, or possible escalation of privileges.

Vulnerable Configurations

Part	Description	Count
Application	Nvidia Nvidia Shield Experience - Nvidia Shield Experience 5.0 Nvidia Shield Experience 5.1 Nvidia Shield Experience 5.2 Nvidia Shield Experience 6.0 Nvidia Shield Experience 6.1 Nvidia Shield Experience 6.2 Nvidia Shield Experience 6.3 Nvidia Shield Experience 7.0 Nvidia Shield Experience 7.1 Nvidia Shield Experience 7.2 Nvidia Shield Experience 7.2.3 Nvidia Shield Experience 8.0 Nvidia Shield Experience 8.0.1 Nvidia Shield Experience 8.2.2	15
OS	Google Google Android -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5259