high
7.5
Advisory Published
Updated

CVE-2021-23217

First published: Sat Nov 20 2021(Updated: )

NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller, which may allow a user with elevated privileges to instantiate a DMA write operation only within a specific time window timed to corrupt code execution, which may impact confidentiality, integrity, or availability. The scope impact may extend to other components.

Credit: psirt@nvidia.com

Affected SoftwareAffected VersionHow to fix
NVIDIA GeForce GT 605
NVIDIA GeForce GT 610
NVIDIA GeForce GT 620
NVIDIA GeForce GT 625
NVIDIA GeForce GT 630
NVIDIA GeForce GT 635
NVIDIA GeForce GT 640
NVIDIA GeForce GT 705
NVIDIA GeForce GT 710
NVIDIA GeForce GT 720
NVIDIA GeForce GT 730
NVIDIA GeForce GT 740
NVIDIA GeForce GTX 645
NVIDIA GeForce GTX 650
NVIDIA GeForce GTX 650 Ti
NVIDIA GeForce GTX 650 Ti BOOST
NVIDIA GeForce GTX 660
NVIDIA GeForce GTX 660 Ti
NVIDIA GeForce GTX 670
NVIDIA GeForce GTX 680
NVIDIA GeForce GTX 690
Nvidia GeForce GTX 745
Nvidia GeForce GTX 750
Nvidia Geforce GTX 750 Ti Firmware
NVIDIA GeForce GTX 760
NVIDIA GeForce GTX 760 Ti
NVIDIA GeForce GTX 770
NVIDIA GeForce GTX 780
NVIDIA GeForce GTX 780 Ti
NVIDIA GeForce GTX 950
NVIDIA GeForce GTX 960
NVIDIA GeForce GTX 970
NVIDIA GeForce GTX 980
NVIDIA GeForce GTX TITAN X
NVIDIA GTX Titan
NVIDIA GTX Titan Black
NVIDIA GTX TITAN Z
NVIDIA Jetson Nano
NVIDIA Jetson Nano
NVIDIA Jetson Nano
NVIDIA Jetson TX1 L4T
Nvidia Quadro M1000M
NVIDIA Quadro M1200
NVIDIA Quadro M2000
NVIDIA Quadro M2000M
NVIDIA Quadro M2200
NVIDIA Quadro M3000M
NVIDIA Quadro M4000
NVIDIA Quadro M4000M
NVIDIA Quadro M5000
NVIDIA Quadro M5000M
NVIDIA quadro m500m
NVIDIA Quadro M520
NVIDIA Quadro M5500
NVIDIA Quadro M6000
NVIDIA Quadro M600M
NVIDIA Quadro M620
NVIDIA Shield TV
NVIDIA Shield TV
NVIDIA Tesla M10
NVIDIA Tesla M4
NVIDIA Tesla M40
NVIDIA Tesla M6
NVIDIA Tesla M60
NVIDIA tesla p100
Linux Kernel
Microsoft Windows

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the vulnerability ID?

    The vulnerability ID is CVE-2021-23217.

  • What is the severity of CVE-2021-23217?

    The severity of CVE-2021-23217 is high with a severity value of 7.5.

  • What is affected by CVE-2021-23217?

    NVIDIA GPU and Tegra hardware, such as Nvidia GeForce and Quadro products, are affected by CVE-2021-23217.

  • What is the impact of CVE-2021-23217?

    CVE-2021-23217 may impact confidentiality, integrity, or availability of the affected systems.

  • Is Linux Kernel affected by CVE-2021-23217?

    No, Linux Kernel is not affected by CVE-2021-23217.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203