Vulnerabilities > Nvidia > Shield Experience > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-18 | CVE-2021-34401 | Unspecified vulnerability in Nvidia Shield Experience NVIDIA Linux kernel distributions contain a vulnerability in nvmap NVGPU_IOCTL_CHANNEL_SET_ERROR_NOTIFIER, where improper access control may lead to code execution, compromised integrity, or denial of service. | 4.6 |
| 2022-01-18 | CVE-2021-34402 | Out-of-bounds Write vulnerability in Nvidia Shield Experience NVIDIA Tegra kernel driver contains a vulnerability in NVIDIA NVDEC, where a user with high privileges might be able to read from or write to a memory location that is outside the intended boundary of the buffer, which may lead to denial of service, Information disclosure, loss of Integrity, or possible escalation of privileges. | 6.7 |
| 2022-01-18 | CVE-2021-34403 | Use After Free vulnerability in Nvidia Shield Experience NVIDIA Linux distributions contain a vulnerability in nvmap ioctl, which allows any user with a local account to exploit a use-after-free condition, leading to code privilege escalation, loss of confidentiality and integrity, or denial of service. | 4.6 |
| 2022-01-18 | CVE-2021-34404 | Unspecified vulnerability in Nvidia Shield Experience Android images for T210 provided by NVIDIA contain a vulnerability in BROM, where failure to limit access to AHB-DMA when BROM fails may allow an unprivileged attacker with physical access to cause denial of service or impact integrity and confidentiality beyond the security scope of BROM. | 4.6 |
| 2022-01-18 | CVE-2021-34405 | Unchecked Return Value vulnerability in Nvidia Shield Experience NVIDIA Linux distributions contain a vulnerability in TrustZone’s TEE_Malloc function, where an unchecked return value causing a null pointer dereference may lead to denial of service. | 5.5 |
| 2022-01-18 | CVE-2021-34406 | NULL Pointer Dereference vulnerability in Nvidia Shield Experience NVIDIA Tegra kernel driver contains a vulnerability in NVHost, where a specific race condition can lead to a null pointer dereference, which may lead to a system reboot. | 4.7 |
| 2021-08-11 | CVE-2021-1106 | Out-of-bounds Write vulnerability in Nvidia Jetson Linux and Shield Experience NVIDIA Linux kernel distributions contain a vulnerability in nvmap, where writes may be allowed to read-only buffers, which may result in escalation of privileges, complete denial of service, unconstrained information disclosure, and serious data tampering of all processes on the system. | 4.6 |
| 2021-08-11 | CVE-2021-1107 | Unspecified vulnerability in Nvidia Jetson Linux and Shield Experience NVIDIA Linux kernel distributions contain a vulnerability in nvmap NVMAP_IOC_WRITE* paths, where improper access controls may lead to code execution, complete denial of service, and seriously compromised integrity of all system components. | 4.6 |
| 2021-08-11 | CVE-2021-1108 | Integer Underflow (Wrap or Wraparound) vulnerability in Nvidia Jetson Linux and Shield Experience NVIDIA Linux kernel distributions contain a vulnerability in FuSa Capture (VI/ISP), where integer underflow due to lack of input validation may lead to complete denial of service, partial integrity, and serious confidentiality loss for all processes in the system. | 4.6 |
| 2021-01-20 | CVE-2021-1068 | Out-of-bounds Read vulnerability in Nvidia Shield Experience NVIDIA SHIELD TV, all versions prior to 8.2.2, contains a vulnerability in the NVDEC component, in which an attacker can read from or write to a memory location that is outside the intended boundary of the buffer, which may lead to denial of service or escalation of privileges. | 4.6 |