CVE-2019-5700: Input Validation
First published: Wed Oct 09 2019(Updated: )
NVIDIA Shield TV Experience prior to v8.0.1, NVIDIA Tegra software contains a vulnerability in the bootloader, where it does not validate the fields of the boot image, which may lead to code execution, denial of service, escalation of privileges, and information disclosure.
Credit: psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nvidia Shield Experience | <8.0.1 | |
| Google Android | =9.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2019-5700?
CVE-2019-5700 is a vulnerability found in NVIDIA Shield TV Experience prior to v8.0.1 and NVIDIA Tegra software.
What is the severity of CVE-2019-5700?
The severity of CVE-2019-5700 is high with a CVSS score of 7.8.
What is the affected software for CVE-2019-5700?
The affected software for CVE-2019-5700 is Nvidia Shield Experience prior to v8.0.1 and NVIDIA Tegra software.
What are the possible impacts of CVE-2019-5700?
The possible impacts of CVE-2019-5700 include code execution, denial of service, escalation of privileges, and information disclosure.
How can I fix CVE-2019-5700?
To fix CVE-2019-5700, update to Nvidia Shield TV Experience v8.0.1 or later.
- agent/weakness
- agent/author
- agent/severity
- agent/references
- agent/type
- agent/tags
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/mitre-cve
- source/MITRE
- vendor/nvidia
- canonical/nvidia shield experience
- vendor/google
- canonical/google android
- version/google android/9.0