File Corruption Vulnerability in NVIDIA GeForce Experience
CVE-2019-5702

7.8HIGH

Key Information:

Vendor: Nvidia
Status: Geforce Experience
Vendor: CVE Published:; 24 December 2019

Summary

NVIDIA GeForce Experience prior to version 3.20.2 is susceptible to a vulnerability that arises when the GameStream feature is activated. An attacker with local system access can exploit this vulnerability to corrupt critical system files, which may ultimately result in denial of service or allow for privilege escalation. Users are recommended to update to the latest version to mitigate potential risks.

Affected Version(s)

GeForce Experience All versions prior to 3.20.2

References

https://nvidia.custhelp.com/app/answers/detail/a_id/4954

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 24, 2019
Vulnerability Reserved
Jan 7, 2019