CVE-2021-34402
First published: Tue Jan 18 2022(Updated: )
NVIDIA Tegra kernel driver contains a vulnerability in NVIDIA NVDEC, where a user with high privileges might be able to read from or write to a memory location that is outside the intended boundary of the buffer, which may lead to denial of service, Information disclosure, loss of Integrity, or possible escalation of privileges.
Credit: psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nvidia Shield Experience | <9.0 | |
| Google Android |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this NVIDIA Tegra kernel driver vulnerability?
The vulnerability ID is CVE-2021-34402.
What is the severity of CVE-2021-34402?
The severity of CVE-2021-34402 is medium.
What is affected by the NVIDIA Tegra kernel driver vulnerability?
The affected software is Nvidia Shield Experience version up to exclusive 9.0 and Google Android (not vulnerable).
What are the possible consequences of this vulnerability?
The possible consequences of this vulnerability include denial of service, information disclosure, loss of integrity, or unauthorized access.
Where can I find more information about CVE-2021-34402?
More information about CVE-2021-34402 can be found at this reference: https://nvidia.custhelp.com/app/answers/detail/a_id/5259
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/weakness
- vendor/nvidia
- canonical/nvidia shield experience
- vendor/google
- canonical/google android