Security Bulletin: NVIDIA GeForce NOW - November 2020

2020-11-10T00:00:00
ID NVIDIA:5096
Type nvidia
Reporter Nvidia
Modified 2020-11-10T15:30:00

Description

Details

This section summarizes the potential impact that this security update addresses. Descriptions use CWE™, and base scores and vectors use CVSS V3.1 standards.

CVE IDs | Description | Base Score | Vector
---|---|---|---
CVE‑2020‑5992 | NVIDIA GeForce NOW application software on Windows contains a vulnerability in its open-source software dependency in which the OpenSSL library is vulnerable to binary planting attacks by a local user, which may lead to code execution or escalation of privileges. | 7.3 | AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

The NVIDIA risk assessment is based on an average of risk across a diverse set of installed systems and may not represent the true risk to your local installation. NVIDIA recommends consulting a security or IT professional to evaluate the risk to your specific configuration.