Lucene search
+L

701 matches found

bdu_fstec
bdu_fstec
added 2018/07/27 12:0 a.m.32 views

The vulnerability of the NVIDIA Tegra X1 TZ operating system allows a hacker to increase their privileges.

The vulnerability of the NVIDIA Tegra X1 TZ operating system’s Android platform arises from data writing beyond the buffer in memory. Exploiting this vulnerability can allow attackers to increase their privileges...

7.8CVSS7.5AI score0.00167EPSS
Exploits0References3Affected Software1
gitee
gitee
added 2018/06/23 9:35 p.m.9 views

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Nvidia Tegra_Bootrom_Rcm

This is a proof-of-concept arbitrary code loader for Tegra processors, which takes advantage of CVE-2018-6242 "Fusée Gelée" to gain arbitrary code execution and load small payloads over USB. The vulnerability is documented in the 'report' subfolder, and more details and guides are to follow. The...

7.2CVSS7.3AI score0.0274EPSS
Exploits1
prion
prion
added 2018/06/07 7:29 p.m.18 views

Out-of-bounds

In Android before the 2018-06-05 security patch level, NVIDIA Tegra X1 TZ contains a possible out of bounds write due to missing bounds check which could lead to escalation of privilege from the kernel to the TZ. User interaction is not needed for exploitation. This issue is rated as high. Versio...

7.2CVSS7.6AI score0.00159EPSS
Exploits0References1
nvd
nvd
added 2018/06/07 7:29 p.m.23 views

CVE-2017-6294

In Android before the 2018-06-05 security patch level, NVIDIA Tegra X1 TZ contains a possible out of bounds write due to missing bounds check which could lead to escalation of privilege from the kernel to the TZ. User interaction is not needed for exploitation. This issue is rated as high. Versio...

7.8CVSS7.7AI score0.00159EPSS
Exploits0References1
cve
cve
added 2018/06/07 7:0 p.m.52 views

CVE-2017-6294

CVE-2017-6294 is an NVIDIA TLK TrustZone OS issue in the logging driver for Tegra X1 TZ (TLK TrustZone OS). The vulnerability could allow arbitrary code execution, DoS, or privilege escalation with local access. Affected: SHIELD TV on Android; vulnerable component is the TLK TrustZone OS logging ...

7.8CVSS7.6AI score0.00159EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2018/06/07 7:0 p.m.22 views

CVE-2017-6294

In Android before the 2018-06-05 security patch level, NVIDIA Tegra X1 TZ contains a possible out of bounds write due to missing bounds check which could lead to escalation of privilege from the kernel to the TZ. User interaction is not needed for exploitation. This issue is rated as high. Versio...

7.7AI score0.00159EPSS
Exploits0References1
cnvd
cnvd
added 2018/06/06 12:0 a.m.6 views

Google Android NVIDIA component elevation of privilege vulnerability (CNVD-2018-12654)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android NVIDIA component NVIDIA Tegra X1 TZ. An attacker can exploit this vulnerability to achieve elevation of...

7.8CVSS7.9AI score0.00159EPSS
Exploits0References1
nvd
nvd
added 2018/05/10 2:29 p.m.19 views

CVE-2017-6293

In Android before the 2018-05-05 security patch level, NVIDIA Tegra X1 TZ contains a vulnerability in Widevine TA where the software writes data past the end, or before the beginning, of the intended buffer, which may lead to escalation of Privileges. This issue is rated as high. Android:...

7.8CVSS5.7AI score0.00167EPSS
Exploits0References2
prion
prion
added 2018/05/10 2:29 p.m.22 views

Design/Logic Flaw

In Android before the 2018-05-05 security patch level, NVIDIA Tegra X1 TZ contains a vulnerability in Widevine TA where the software writes data past the end, or before the beginning, of the intended buffer, which may lead to escalation of Privileges. This issue is rated as high. Android:...

7.2CVSS7.5AI score0.00167EPSS
Exploits0References2
cvelist
cvelist
added 2018/05/10 2:0 p.m.24 views

CVE-2017-6293

In Android before the 2018-05-05 security patch level, NVIDIA Tegra X1 TZ contains a vulnerability in Widevine TA where the software writes data past the end, or before the beginning, of the intended buffer, which may lead to escalation of Privileges. This issue is rated as high. Android:...

6.1AI score0.00167EPSS
Exploits0References2
cve
cve
added 2018/05/10 2:0 p.m.51 views

CVE-2017-6293

CVE-2017-6293 affects NVIDIA SHIELD TV via the Tegra X1 TZ (Widevine TA); a buffer overrun in the TZ/TEE path allows local privilege escalation. The issue is described as a local code execution/elevation of privilege on the Tegra kernel driver. Public details in the connected documents indicate t...

7.8CVSS5.3AI score0.00167EPSS
Exploits0References2Affected Software1
cnvd
cnvd
added 2018/05/08 12:0 a.m.7 views

Google Android NVIDIA component elevation of privilege vulnerability (CNVD-2018-10690)

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An elevation of privilege vulnerability exists in the Google Android NVIDIA Tegra X1 TZ component, which can be exploited by attackers to elevate privileges...

7.8CVSS7.2AI score0.00167EPSS
Exploits0References1
cnvd
cnvd
added 2018/05/03 12:0 a.m.4 views

NVIDIA Tegra Mobile Processor BootROM Recovery Mode Buffer Overflow Vulnerability

NVIDIA Tegra mobile processors are central processor products from NVIDIA Corporation.BootROM Recovery Mode RCM is one of the Engineering Mode components that enables data modification. A buffer overflow vulnerability exists in RCM in versions of the NVIDIA Tegra mobile processor prior to 2016. A...

7.2CVSS7.5AI score0.0274EPSS
Exploits1References1
nvd
nvd
added 2018/05/01 8:29 p.m.28 views

CVE-2018-6242

Some NVIDIA Tegra mobile processors released prior to 2016 contain a buffer overflow vulnerability in BootROM Recovery Mode RCM. An attacker with physical access to the device's USB and the ability to force the device to reboot into RCM could exploit the vulnerability to execute unverified code...

7.2CVSS6.7AI score0.0274EPSS
Exploits1References1
prion
prion
added 2018/05/01 8:29 p.m.22 views

Buffer overflow

Some NVIDIA Tegra mobile processors released prior to 2016 contain a buffer overflow vulnerability in BootROM Recovery Mode RCM. An attacker with physical access to the device's USB and the ability to force the device to reboot into RCM could exploit the vulnerability to execute unverified code...

7.2CVSS6.7AI score0.0274EPSS
Exploits1References1
cve
cve
added 2018/05/01 8:0 p.m.67 views

CVE-2018-6242

CVE-2018-6242 affects NVIDIA Tegra mobile processors released before 2016, via a buffer overflow in BootROM Recovery Mode (RCM). The underlying issue lets an attacker with physical access and a USB connection force reboot into RCM to execute unverified code. Public materials confirm exploit guida...

7.2CVSS6.7AI score0.0274EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2018/05/01 8:0 p.m.24 views

CVE-2018-6242

Some NVIDIA Tegra mobile processors released prior to 2016 contain a buffer overflow vulnerability in BootROM Recovery Mode RCM. An attacker with physical access to the device's USB and the ability to force the device to reboot into RCM could exploit the vulnerability to execute unverified code...

6.7AI score0.0274EPSS
Exploits1References1
myhack58
myhack58
added 2018/04/25 12:0 a.m.40 views

The Switch was heavy! Tegra kernel vulnerabilities cannot be fixed, the jailbreak is just around the corner-vulnerability warning-the black bar safety net

! The researchers released a Fusée Gelée vulnerability PoC code, the vulnerability is Nintendo Switch the host in the embedded processor relates to the Nvidia Tegra code. This vulnerability is named“FuséeGelée”, is a cold start to crack, you can allow the user to bypass the device lock in the...

7.8AI score
Exploits0
threatpost
threatpost
added 2018/04/24 7:40 p.m.16 views

Exploit Targets Nvidia Tegra-Based Nintendo Systems

UPDATE – Nvidia sought to downplay a vulnerability discovered in its Tegra X1-based systems in a recently published notice. “A researcher indicates that a person with physical access to older Tegra-based processors could connect to the device’s USB port, bypass the secure boot and execute...

1.6AI score
Exploits0References5
nvidia
nvidia
added 2018/04/24 12:0 a.m.29 views

Security Notice: NVIDIA Tegra RCM Vulnerability

NVIDIA'S response to the Tegra RCM issue April 24, 2018 This notice is a response to recent publications on a security issue regarding NVIDIA Tegra Recovery Mode RCM. A researcher indicates that a person with physical access to older Tegra-based processors could connect to the device's USB port,...

7.2CVSS6.5AI score0.0274EPSS
Exploits1
Rows per page
Query Builder