{"vulnerability": "cve-2021-3439", "sightings": [{"uuid": "464d6594-a05e-4257-bf41-324d6eb01bb9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3439", "type": "seen", "source": "https://t.me/cibsecurity/57262", "content": "\u203c CVE-2021-3439 \u203c\n\nHP has identified a potential vulnerability in BIOS firmware of some Workstation products. Firmware updates are being released to mitigate these potential vulnerabilities.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-01T12:14:02.000000Z"}, {"uuid": "57c8db05-8a70-4010-a686-506c5db00ff8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-34390", "type": "seen", "source": "https://t.me/cibsecurity/25636", "content": "\u203c CVE-2021-34390 \u203c\n\nTrusty TLK contains a vulnerability in the NVIDIA TLK kernel function where a lack of checks allows the exploitation of an integer overflow on the size parameter of the tz_map_shared_mem function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-23T02:30:33.000000Z"}, {"uuid": "bad38bf5-5f0a-4b86-9cb2-eb29a0c2c780", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-34392", "type": "seen", "source": "https://t.me/cibsecurity/25635", "content": "\u203c CVE-2021-34392 \u203c\n\nTrusty TLK contains a vulnerability in the NVIDIA TLK kernel where an integer overflow in the tz_map_shared_mem function can bypass boundary checks, which might lead to denial of service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-23T02:30:32.000000Z"}, {"uuid": "a137e4ad-1352-47ae-997c-f36b0604afc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-34397", "type": "seen", "source": "https://t.me/cibsecurity/25634", "content": "\u203c CVE-2021-34397 \u203c\n\nBootloader contains a vulnerability in NVIDIA MB2, which may cause free-the-wrong-heap, which may lead to limited denial of service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-23T02:30:32.000000Z"}, {"uuid": "230b9d23-18fa-424d-a216-e10e0d3e1c9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-34395", "type": "seen", "source": "https://t.me/cibsecurity/25633", "content": "\u203c CVE-2021-34395 \u203c\n\nTrusty TLK contains a vulnerability in its access permission settings where it does not properly restrict access to a resource from a user with local privileges, which might lead to limited information disclosure and limited denial of service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-23T02:27:33.000000Z"}, {"uuid": "1d1f0bda-c0c4-4e3a-9f52-918e6098c27d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-34393", "type": "seen", "source": "https://t.me/cibsecurity/25632", "content": "\u203c CVE-2021-34393 \u203c\n\nTrusty contains a vulnerability in TSEC TA which deserializes the incoming messages even though the TSEC TA does not expose any command. This vulnerability might allow an attacker to exploit the deserializer to impact code execution, causing information disclosure.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-23T02:27:32.000000Z"}, {"uuid": "b72cf65b-219a-487b-8844-a13b0afb44d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-34396", "type": "seen", "source": "https://t.me/cibsecurity/25631", "content": "\u203c CVE-2021-34396 \u203c\n\nBootloader contains a vulnerability in access permission settings where unauthorized software may be able to overwrite NVIDIA MB2 code, which would result in limited denial of service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-23T02:27:31.000000Z"}, {"uuid": "dd4d9471-c5e7-4ce0-a538-3fada15163e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-34391", "type": "seen", "source": "https://t.me/cibsecurity/25630", "content": "\u203c CVE-2021-34391 \u203c\n\nTrusty TLK contains a vulnerability in the NVIDIA TLK kernel\u00c3\u00af\u00c2\u00bf\u00c2\u00bds tz_handle_trusted_app_smc function where a lack of integer overflow checks on the req_off and param_ofs variables leads to memory corruption of critical kernel structures.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-23T02:27:30.000000Z"}]}