4 matches found
site.irko.com.br Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1098705 Security Researcher haxmov Helped patch 543 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting site.irko.com.br website and...
Security Bulletin: NVIDIA Shield TV contains multiple vulnerabilities; update on "BlueBorne"
Vulnerability Details The following sections summarize the vulnerabilities. Descriptions use CWE™ and risk assessments follow CVSS. CVE-2017-6248 and CVE-2017-6249 NVIDIA Tegra kernel audio driver contains a vulnerability in Audio DSP where an invalid user parameter may be copied without a check ...
Privilege escalation
An elevation of privilege vulnerability in the NVIDIA sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: N/A...
CVE-2017-6249
CVE-2017-6249 is an elevation-of-privilege issue affecting NVIDIA’s Tegra kernel audio driver (Audio DSP) on Android. The NVIDIA bulletin specifies that an invalid user parameter may be copied to an output buffer without checking input size, which can allow a local malicious app to execute arbitr...