CVE-2021-23219

Summary

NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller, which may allow a user with elevated privileges to access protected information by identifying, exploiting, and loading vulnerable microcode. Such an attack may lead to information disclosure.

Affected Software

VendorProductVersion RangeStatus
NVIDIANVIDIA GPU and Tegra hardwareMaxwell (except GM206), Tegra X1, Tegra X1+affected

Weaknesses

  • CWE 1190: DMA Device Enabled Too Early in Boot Phase

ADP Enrichment

CVE Program Container

Additional References

References