Nvidia Shield Tv Firmware vulnerabilities

CVE-2017-6282 [HIGH] CWE-123 CVE-2017-6282: NVIDIA Tegra kernel driver contains a vulnerability in NVMAP where an attacker has the ability to wr NVIDIA Tegra kernel driver contains a vulnerability in NVMAP where an attacker has the ability to write an arbitrary value to an arbitrary location which may lead to an escalation of privileges. This issue is rated as high.

CVE-2017-6296 [HIGH] CWE-362 CVE-2017-6296: NVIDIA TrustZone Software contains a TOCTOU issue in the DRM application which may lead to the denia NVIDIA TrustZone Software contains a TOCTOU issue in the DRM application which may lead to the denial of service or possible escalation of privileges. This issue is rated as moderate.

CVE-2017-6295 [HIGH] CWE-125 CVE-2017-6295: NVIDIA TrustZone Software contains a vulnerability in the Keymaster implementation where the softwar NVIDIA TrustZone Software contains a vulnerability in the Keymaster implementation where the software reads data past the end, or before the beginning, of the intended buffer; and may lead to denial of service or information disclosure. This issue is rated as high.

CVE-2017-6284 [MEDIUM] CWE-200 CVE-2017-6284: NVIDIA Security Engine contains a vulnerability in the Deterministic Random Bit Generator (DRBG) whe NVIDIA Security Engine contains a vulnerability in the Deterministic Random Bit Generator (DRBG) where the DRBG does not properly initialize and store or transmits sensitive data using a weakened encryption scheme that is unable to protect sensitive data which may lead to information disclosure.This issue is rated as moderate.

CVE-2017-6283 [MEDIUM] CWE-200 CVE-2017-6283: NVIDIA Security Engine contains a vulnerability in the RSA function where the keyslot read/write loc NVIDIA Security Engine contains a vulnerability in the RSA function where the keyslot read/write lock permissions are cleared on a chip reset which may lead to information disclosure. This issue is rated as high.

CVE-2016-6917 [HIGH] CWE-119 CVE-2016-6917: Buffer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Sh Buffer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5.

CVE-2016-6916 [HIGH] CWE-190 CVE-2016-6916: Integer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, S Integer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5 allows local users to cause a denial of service (system crash) via unspecified vectors, which triggers a buffer overflow.

CVE-2016-6915 [HIGH] CWE-119 CVE-2016-6915: Stack-based buffer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before Stack-based buffer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5.