93 matches found
Buffer overflow
Moonlight-common-c contains the core GameStream client code shared between Moonlight clients. Moonlight-common-c is vulnerable to buffer overflow starting in commit 50c0a51b10ecc5b3415ea78c21d96d679e2288f9 due to unmitigated usage of unsafe C functions and improper bounds checking. A malicious ga...
CVE-2023-42801
CVE-2023-42801 affects Moonlight-common-c, the core GameStream client code. The vulnerability is a stack-based buffer overflow in the library that begins after pairing, exploitable by sending a malicious game streaming server to a Moonlight client. Exploitation could crash the client and, in theo...
CVE-2023-42801 Stack buffer overflow due to `strcpy` into fixed size buffer in `extractVersionQuadFromString`
Moonlight-common-c contains the core GameStream client code shared between Moonlight clients. Moonlight-common-c is vulnerable to buffer overflow starting in commit f57bd745b4cbed577ea654fad4701bea4d38b44c. A malicious game streaming server could exploit a buffer overflow vulnerability to crash a...
CVE-2023-42800
CVE-2023-42800 – Moonlight-common-c buffer overflow : The Moonlight-common-c component is vulnerable to a buffer overflow due to unmitigated use of unsafe C functions and improper bounds checking, starting from commit 50c0a51b10e…3d09fcfd6d45056faca354e0. A malicious game streaming server could c...
CVE-2023-42800 Buffer overflow due to use of `strcpy` in `performRtspHandshake`
Moonlight-common-c contains the core GameStream client code shared between Moonlight clients. Moonlight-common-c is vulnerable to buffer overflow starting in commit 50c0a51b10ecc5b3415ea78c21d96d679e2288f9 due to unmitigated usage of unsafe C functions and improper bounds checking. A malicious ga...
CVE-2023-42800 Buffer overflow due to use of `strcpy` in `performRtspHandshake`
Moonlight-common-c contains the core GameStream client code shared between Moonlight clients. Moonlight-common-c is vulnerable to buffer overflow starting in commit 50c0a51b10ecc5b3415ea78c21d96d679e2288f9 due to unmitigated usage of unsafe C functions and improper bounds checking. A malicious ga...
CVE-2023-42800 Buffer overflow due to use of `strcpy` in `performRtspHandshake`
Moonlight-common-c contains the core GameStream client code shared between Moonlight clients. Moonlight-common-c is vulnerable to buffer overflow starting in commit 50c0a51b10ecc5b3415ea78c21d96d679e2288f9 due to unmitigated usage of unsafe C functions and improper bounds checking. A malicious ga...
CVE-2023-42799
CVE-2023-42799 affects Moonlight-common-c, the core GameStream client code used by Moonlight clients. The vulnerability is a buffer overflow caused by unmitigated use of unsafe C functions and improper bounds checking, starting with commit 50c0a51b10ecc5b3415ea78c21d96d679e2288f9. A malicious gam...
CVE-2023-42799 Buffer overflow due to use of `strcpy` in `parseUrlAddrFromRtspUrlString`
Moonlight-common-c contains the core GameStream client code shared between Moonlight clients. Moonlight-common-c is vulnerable to buffer overflow starting in commit 50c0a51b10ecc5b3415ea78c21d96d679e2288f9 due to unmitigated usage of unsafe C functions and improper bounds checking. A malicious ga...
Moonlight-common-c Security Vulnerability
Moonlight-common-c is the core GameStream client code shared between Moonlight clients. A security vulnerability exists in Moonlight-c that stems from incorrect boundary checking and is susceptible to buffer overflows that could allow an attacker to implement Remote Code Execution RCE...
NVIDIA GeForce Experience < 3.24.0.126 Local Privilege Escalation
NVIDIA GeForce Experience, all versions prior to 3.24.0.126, contain a vulnerability in user authorization, where GameStream does not correctly apply individual access controls for users on the same device, which, with user intervention, may lead to escalation of privileges, information disclosur...
CVE-2021-23175
NVIDIA GeForce Experience contains a vulnerability in user authorization, where GameStream does not correctly apply individual user access controls for users on the same device, which, with user intervention, may lead to escalation of privileges, information disclosure, data tampering, and denial...
CVE-2021-23175
NVIDIA GeForce Experience contains a vulnerability in user authorization, where GameStream does not correctly apply individual user access controls for users on the same device, which, with user intervention, may lead to escalation of privileges, information disclosure, data tampering, and denial...
Design/Logic Flaw
NVIDIA GeForce Experience contains a vulnerability in user authorization, where GameStream does not correctly apply individual user access controls for users on the same device, which, with user intervention, may lead to escalation of privileges, information disclosure, data tampering, and denial...
CVE-2021-23175
NVIDIA GeForce Experience contains a vulnerability in user authorization, where GameStream does not correctly apply individual user access controls for users on the same device, which, with user intervention, may lead to escalation of privileges, information disclosure, data tampering, and denial...
Nvidia NVIDIA GeForce Experience 访问控制错误漏洞
Nvidia NVIDIA GeForce Experience is a suite of automatic graphics card update tools from Nvidia. The product is capable of automatically updating graphics card drivers and supports graphics card performance management and optimization, among other things. NVIDIA GeForce Experience suffers from an...
CVE-2021-1079
NVIDIA GeForce Experience, all versions prior to 3.22, contains a vulnerability in GameStream plugins where log files are created using NT/System level permissions, which may lead to code execution, denial of service, or local privilege escalation. The attacker does not have control over the...
CVE-2021-1079
NVIDIA GeForce Experience, all versions prior to 3.22, contains a vulnerability in GameStream plugins where log files are created using NT/System level permissions, which may lead to code execution, denial of service, or local privilege escalation. The attacker does not have control over the...
Design/Logic Flaw
NVIDIA GeForce Experience, all versions prior to 3.22, contains a vulnerability in GameStream plugins where log files are created using NT/System level permissions, which may lead to code execution, denial of service, or local privilege escalation. The attacker does not have control over the...
CVE-2021-1079
CVE-2021-1079 affects NVIDIA GeForce Experience (all versions prior to 3.22) due to a GameStream plugin that creates log files with NT/System level permissions, enabling local impact such as code execution, denial of service, or local privilege escalation. The issue is tied to the log-file creati...