CVE-2021-23201 Information

Description

NVIDIA GPU and Tegra hardware contain a vulnerability in an internal microcontroller which may allow a user with elevated privileges to generate valid microcode by identifying exploiting and loading vulnerable microcode. Such an attack could lead to information disclosure data corruption or denial of service of the device. The scope may extend to other components.

CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Reference

https://nvidia.custhelp.com/app/answers/detail/a_id/5263

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction Required

HIGH

Scope

NONE

Confidentiality Impact

CHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

7.5