Information disclosure

NVIDIA Shield TV Experience prior to v8.0.1, NVIDIA Tegra software contains a vulnerability in the bootloader, where it does not validate the fields of the boot image, which may lead to code execution, denial of service, escalation of privileges, and information disclosure...

CVE-2019-5699

The CVE-2019-5699 issue affects NVIDIA SHIELD TV (Shield Experience) prior to v8.0.1 due to an incorrect bounds check in the NVIDIA Tegra bootloader, causing a buffer overflow that can lead to escalation of privileges and code execution (with possible information disclosure and DoS). Affected dev...

CVE-2019-5699

NVIDIA Shield TV Experience prior to v8.0.1, NVIDIA Tegra bootloader contains a vulnerability where the software performs an incorrect bounds check, which may lead to buffer overflow resulting in escalation of privileges and code execution. escalation of privileges, and information disclosure, co...

CVE-2019-5700

NVIDIA Shield TV Experience prior to v8.0.1, NVIDIA Tegra software contains a vulnerability in the bootloader, where it does not validate the fields of the boot image, which may lead to code execution, denial of service, escalation of privileges, and information disclosure...

CVE-2019-5700

CVE-2019-5700 affects NVIDIA Shield TV (NVIDIA Tegra bootloader) before Shield Experience 8.0.1. The bootloader does not properly validate fields in the boot image, which may allow code execution, denial of service, privilege escalation, or information disclosure. NVIDIA and Red Hat entries corro...

NVIDIA Shield TV Experience Buffer Overflow Vulnerability

The NVIDIA SHIELD TV entertainment console is a living room entertainment device released by NVIDIA. A buffer overflow vulnerability exists in the NVIDIA Tegra bootloader in NVIDIA Shield TV Experience versions prior to 8.0.1, which originates from an incorrect boundary check performed by the...

Google Android LG Bootloader Information Disclosure Vulnerability (CNVD-2019-47022)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. LG Bootloader is one of the bootloaders. An information disclosure vulnerability exists in LG Bootloader in Android. The vulnerability stems from errors such as configuration during...

Design/Logic Flaw

In the Android kernel in the bootloader there is a possible secure boot bypass. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation...

CVE-2019-9436

In the Android kernel in the bootloader there is a possible secure boot bypass. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation...

CVE-2019-9436

CVE-2019-9436 affects the LG Bootloader component in Android (per Pixel Update Bulletin). The issue is described as a secure boot bypass enabling local elevation of privilege (EoP) with SYSTEM privileges, with exploitation described as requiring user interaction. The vulnerability is listed as Ty...

Google Android LG Bootloader Mobilization Vulnerability

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. LG Bootloader is one of the bootloaders. An elevation of privilege vulnerability exists in LG Bootloader in Android. An attacker can exploit this vulnerability to elevate privileges...

Google Android LG Bootloader Information Disclosure Vulnerability

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. LG Bootloader is one of the bootloaders. An information disclosure vulnerability exists in LG Bootloader in Android. The vulnerability stems from errors such as configuration during...

Pengutronix Barebox Buffer Overflow Vulnerability (CNVD-2019-35034)

Pengutronix barebox is a bootloader used in embedded Linux systems. Pengutronix Barebox suffers from a buffer overflow vulnerability. An attacker can exploit this vulnerability to cause, among other things, a buffer overflow or heap overflow...

Fedora Update for openqa FEDORA-2019-c404576415

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-5679

NVIDIA Shield TV Experience prior to v8.0, NVIDIA Tegra bootloader contains a vulnerability in nvtboot where the Trusted OS image is improperly authenticated, which may lead to code execution, denial of service, escalation of privileges, and information disclosure, code execution, denial of...

CVE-2019-5679

NVIDIA Shield TV Experience prior to v8.0, NVIDIA Tegra bootloader contains a vulnerability in nvtboot where the Trusted OS image is improperly authenticated, which may lead to code execution, denial of service, escalation of privileges, and information disclosure, code execution, denial of...

CVE-2019-13105

Das U-Boot versions 2019.07-rc1 through 2019.07-rc4 can double-free a cached block of data when listing files in a crafted ext4 filesystem...

Design/Logic Flaw

NVIDIA Shield TV Experience prior to v8.0, NVIDIA Tegra bootloader contains a vulnerability in nvtboot where the Trusted OS image is improperly authenticated, which may lead to code execution, denial of service, escalation of privileges, and information disclosure, code execution, denial of...

UBUNTU-CVE-2019-13106

Das U-Boot versions 2016.09 through 2019.07-rc4 can memset too much data while reading a crafted ext4 filesystem, which results in a stack buffer overflow and likely code execution...

CVE-2019-5679

CVE-2019-5679 affects NVIDIA SHIELD TV (SHIELD Experience prior to v8.0). The vulnerability resides in the NVIDIA Tegra bootloader (nvtboot) where the Trusted OS image is not properly authenticated, potentially enabling code execution, denial of service, privilege escalation, and information disc...