NVIDIA GeForce Experience GameStream Vulnerability Disclosure
CVE-2018-6259

2.5LOW

Key Information:

Vendor: Nvidia
Status: Nvidia Geforce Experience
Vendor: CVE Published:; 30 August 2018

Summary

The NVIDIA GeForce Experience software, particularly versions prior to 3.14.1, exhibits a vulnerability linked to the GameStream feature. When this feature is enabled, and an attacker gains system access, there is a potential risk of limited information disclosure if certain system features are activated. This susceptibility could allow malicious actors to exploit system settings to gather sensitive data without authorization.

Affected Version(s)

NVIDIA GeForce Experience All versions prior to 3.14.1

References

https://nvidia.custhelp.com/app/answers/detail/a_id/4685

x_refsource_CONFIRM

CVSS V3.1

Score:

2.5

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 30, 2018
Vulnerability Reserved
Jan 25, 2018