Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-23217

NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller, which may allow a user with elevated privileges to instantiate a DMA write operation only within a specific time window timed to corrupt code execution, which may impact confidentiality, integrity, or availability. The scope impact may extend to other components.

Published

2021-11-20T15:15:07.890

Last Modified

2024-11-21T05:51:23.477

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

CVSSv2 Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.4

Impact Score

10.0

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Hardware	nvidia	geforce_gt_605	-	Yes
Hardware	nvidia	geforce_gt_610	-	Yes
Hardware	nvidia	geforce_gt_620	-	Yes
Hardware	nvidia	geforce_gt_625	-	Yes
Hardware	nvidia	geforce_gt_630	-	Yes
Hardware	nvidia	geforce_gt_635	-	Yes
Hardware	nvidia	geforce_gt_640	-	Yes
Hardware	nvidia	geforce_gt_705	-	Yes
Hardware	nvidia	geforce_gt_710	-	Yes
Hardware	nvidia	geforce_gt_720	-	Yes
Hardware	nvidia	geforce_gt_730	-	Yes
Hardware	nvidia	geforce_gt_740	-	Yes
Hardware	nvidia	geforce_gtx_645	-	Yes
Hardware	nvidia	geforce_gtx_650	-	Yes
Hardware	nvidia	geforce_gtx_650_ti	-	Yes
Hardware	nvidia	geforce_gtx_650_ti_boost	-	Yes
Hardware	nvidia	geforce_gtx_660	-	Yes
Hardware	nvidia	geforce_gtx_660_ti	-	Yes
Hardware	nvidia	geforce_gtx_670	-	Yes
Hardware	nvidia	geforce_gtx_680	-	Yes
Hardware	nvidia	geforce_gtx_690	-	Yes
Hardware	nvidia	geforce_gtx_745	-	Yes
Hardware	nvidia	geforce_gtx_750	-	Yes
Hardware	nvidia	geforce_gtx_750_ti	-	Yes
Hardware	nvidia	geforce_gtx_760	-	Yes
Hardware	nvidia	geforce_gtx_760_ti	-	Yes
Hardware	nvidia	geforce_gtx_770	-	Yes
Hardware	nvidia	geforce_gtx_780	-	Yes
Hardware	nvidia	geforce_gtx_780_ti	-	Yes
Hardware	nvidia	geforce_gtx_950	-	Yes
Hardware	nvidia	geforce_gtx_960	-	Yes
Hardware	nvidia	geforce_gtx_970	-	Yes
Hardware	nvidia	geforce_gtx_980	-	Yes
Hardware	nvidia	geforce_gtx_titan_x	-	Yes
Hardware	nvidia	gtx_titan	-	Yes
Hardware	nvidia	gtx_titan_black	-	Yes
Hardware	nvidia	gtx_titan_z	-	Yes
Hardware	nvidia	jetson_nano	-	Yes
Hardware	nvidia	jetson_nano	-	Yes
Hardware	nvidia	jetson_nano	-	Yes
Hardware	nvidia	jetson_tx1	-	Yes
Hardware	nvidia	quadro_m1000m	-	Yes
Hardware	nvidia	quadro_m1200	-	Yes
Hardware	nvidia	quadro_m2000	-	Yes
Hardware	nvidia	quadro_m2000m	-	Yes
Hardware	nvidia	quadro_m2200	-	Yes
Hardware	nvidia	quadro_m3000m	-	Yes
Hardware	nvidia	quadro_m4000	-	Yes
Hardware	nvidia	quadro_m4000m	-	Yes
Hardware	nvidia	quadro_m5000	-	Yes
Hardware	nvidia	quadro_m5000m	-	Yes
Hardware	nvidia	quadro_m500m	-	Yes
Hardware	nvidia	quadro_m520	-	Yes
Hardware	nvidia	quadro_m5500	-	Yes
Hardware	nvidia	quadro_m6000	-	Yes
Hardware	nvidia	quadro_m600m	-	Yes
Hardware	nvidia	quadro_m620	-	Yes
Hardware	nvidia	shield_tv	-	Yes
Hardware	nvidia	shield_tv_pro	-	Yes
Hardware	nvidia	tesla_m10	-	Yes
Hardware	nvidia	tesla_m4	-	Yes
Hardware	nvidia	tesla_m40	-	Yes
Hardware	nvidia	tesla_m6	-	Yes
Hardware	nvidia	tesla_m60	-	Yes
Hardware	nvidia	tesla_p100	-	Yes
Operating System	linux	linux_kernel	-	No
Operating System	microsoft	windows	-	No

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5263 Vendor Advisory ([email protected])
https://nvidia.custhelp.com/app/answers/detail/a_id/5263 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)