Lucene search

NvidiaCVELIST:CVE-2021-1108

HistoryAug 11, 2021 - 9:33 p.m.

CVE-2021-1108

2021-08-1121:33:01

nvidia

www.cve.org

nvidia

linux kernel

fusa capture

denial of service

integrity

confidentiality

CVSS3

7.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

AI Score

7.2

Confidence

High

EPSS

Percentile

12.6%

JSON

NVIDIA Linux kernel distributions contain a vulnerability in FuSa Capture (VI/ISP), where integer underflow due to lack of input validation may lead to complete denial of service, partial integrity, and serious confidentiality loss for all processes in the system.

CNA Affected

[
  {
    "product": "Jetson AGX Xavier series, Jetson Xavier NX, Jetson TX2 series, Jetson TX2 NX, Jetson Nano, Jetson Nano 2GB, Jetson TX1",
    "vendor": "NVIDIA",
    "versions": [
      {
        "status": "affected",
        "version": "All Jetson Linux versions prior to r32.6.1"
      }
    ]
  },
  {
    "product": "Shield TV",
    "vendor": "NVIDIA",
    "versions": [
      {
        "status": "affected",
        "version": "All Shield TV versions prior to SE 9.0"
      }
    ]
  }
]

References

nvidia.custhelp.com/app/answers/detail/a_id/5216

nvidia.custhelp.com/app/answers/detail/a_id/5259

CVSS3

7.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

AI Score

7.2

Confidence

High

EPSS

Percentile

12.6%

JSON

Related for CVELIST:CVE-2021-1108