Vulnerability Description
NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller, which may allow a user with elevated privileges to instantiate a DMA write operation only within a specific time window timed to corrupt code execution, which may impact confidentiality, integrity, or availability. The scope impact may extend to other components.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Geforce Gt 605 | - |
| Nvidia | Geforce Gt 610 | - |
| Nvidia | Geforce Gt 620 | - |
| Nvidia | Geforce Gt 625 | - |
| Nvidia | Geforce Gt 630 | - |
| Nvidia | Geforce Gt 635 | - |
| Nvidia | Geforce Gt 640 | - |
| Nvidia | Geforce Gt 705 | - |
| Nvidia | Geforce Gt 710 | - |
| Nvidia | Geforce Gt 720 | - |
| Nvidia | Geforce Gt 730 | - |
| Nvidia | Geforce Gt 740 | - |
| Nvidia | Geforce Gtx 645 | - |
| Nvidia | Geforce Gtx 650 | - |
| Nvidia | Geforce Gtx 650 Ti | - |
| Nvidia | Geforce Gtx 650 Ti Boost | - |
| Nvidia | Geforce Gtx 660 | - |
| Nvidia | Geforce Gtx 660 Ti | - |
| Nvidia | Geforce Gtx 670 | - |
| Nvidia | Geforce Gtx 680 | - |
References
- https://nvidia.custhelp.com/app/answers/detail/a_id/5263Vendor Advisory
- https://nvidia.custhelp.com/app/answers/detail/a_id/5263Vendor Advisory
FAQ
What is CVE-2021-23217?
CVE-2021-23217 is a vulnerability with a CVSS score of 7.5 (HIGH). NVIDIA GPU and Tegra hardware contain a vulnerability in the internal microcontroller, which may allow a user with elevated privileges to instantiate a DMA write operation only within a specific time ...
How severe is CVE-2021-23217?
CVE-2021-23217 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-23217?
Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Geforce Gt 605, Nvidia Geforce Gt 610, Nvidia Geforce Gt 620, Nvidia Geforce Gt 625, Nvidia Geforce Gt 630.