4.4 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
12.7%
NVIDIA GeForce Experience, all versions prior to 3.24.0.126, contain a vulnerability in user authorization, where GameStream does not correctly apply individual access controls for users on the same device, which, with user intervention, may lead to escalation of privileges, information disclosure, data tampering and denial of service, affecting other resources beyond the intended security of GameStream.
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable, Inc.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(157125);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/02/09");
script_cve_id("CVE-2021-23175");
script_xref(name:"IAVA", value:"2022-A-0053-S");
script_name(english:"NVIDIA GeForce Experience < 3.24.0.126 Local Privilege Escalation");
script_set_attribute(attribute:"synopsis", value:
"A GPU companion application installed on the remote Windows host is affected by a privilege escalation
vulnerability.");
script_set_attribute(attribute:"description", value:
"NVIDIA GeForce Experience, all versions prior to 3.24.0.126, contain a vulnerability in user authorization, where
GameStream does not correctly apply individual access controls for users on the same device, which, with user
intervention, may lead to escalation of privileges, information disclosure, data tampering and denial of service,
affecting other resources beyond the intended security of GameStream.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://nvidia.custhelp.com/app/answers/detail/a_id/5295");
script_set_attribute(attribute:"solution", value:
"Update to NVIDIA GeForce Experience version 3.24.0.126 or later.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-23175");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"vuln_publication_date", value:"2021/12/21");
script_set_attribute(attribute:"patch_publication_date", value:"2021/12/21");
script_set_attribute(attribute:"plugin_publication_date", value:"2022/01/26");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:nvidia:geforce_experience");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("nvidia_geforce_experience_installed.nbin");
script_require_keys("SMB/Registry/Enumerated", "installed_sw/NVIDIA GeForce Experience");
exit(0);
}
include('vcf.inc');
get_kb_item_or_exit('SMB/Registry/Enumerated');
var app_info = vcf::get_app_info(app:'NVIDIA GeForce Experience', win_local:TRUE);
var constraints = [
{ 'fixed_version' : '3.24.0.126' }
];
vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);
Vendor | Product | Version | CPE |
---|---|---|---|
nvidia | geforce_experience | cpe:/a:nvidia:geforce_experience |
4.4 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
12.7%