CVE-2021-1079

CVE-2021-1079 affects NVIDIA GeForce Experience (all versions prior to 3.22) due to a GameStream plugin that creates log files with NT/System level permissions, enabling local impact such as code execution, denial of service, or local privilege escalation. The issue is tied to the log-file creati...

NVIDIA GeForce Experience < 3.21.0 DoS

The version of NVIDIA GeForce Experience installed on the remote Windows host is prior to 3.21.0. It is, therefore, affected by a denial of service vulnerability in GameStream rxdiag.dll due to improper handling of log files. An unauthenticated, local attacker can exploit this issue, where an...

CVE-2021-1072

NVIDIA GeForce Experience, all versions prior to 3.21, contains a vulnerability in GameStream rxdiag.dll where an arbitrary file deletion due to improper handling of log files may lead to denial of service...

CVE-2021-1072

NVIDIA GeForce Experience, all versions prior to 3.21, contains a vulnerability in GameStream rxdiag.dll where an arbitrary file deletion due to improper handling of log files may lead to denial of service...

Arbitrary file deletion

NVIDIA GeForce Experience, all versions prior to 3.21, contains a vulnerability in GameStream rxdiag.dll where an arbitrary file deletion due to improper handling of log files may lead to denial of service...

CVE-2021-1072

NVIDIA GeForce Experience, all versions prior to 3.21, contains a vulnerability in GameStream rxdiag.dll where an arbitrary file deletion due to improper handling of log files may lead to denial of service...

CVE-2021-1072

CVE-2021-1072 affects NVIDIA GeForce Experience up to version 3.21, where the GameStream component (rxdiag.dll) mishandles log files, enabling an arbitrary file deletion that can cause a denial of service. The vulnerability is described across multiple sources as a local issue impacting the softw...

NVIDIA GeForce Experience 安全漏洞

NVIDIA GeForce Experience is graphics card driver update software that helps to check your computer's geforce drivers and update them to the latest version. An arbitrary file deletion vulnerability exists in GameStream rxdiag.dll in NVIDIA GeForce Experience versions prior to 3.21. The...

CVE-2019-5702

NVIDIA GeForce Experience, all versions prior to 3.20.2, contains a vulnerability when GameStream is enabled in which an attacker with local system access can corrupt a system file, which may lead to denial of service or escalation of privileges...

CVE-2019-5702

NVIDIA GeForce Experience, all versions prior to 3.20.2, contains a vulnerability when GameStream is enabled in which an attacker with local system access can corrupt a system file, which may lead to denial of service or escalation of privileges...

Input validation

NVIDIA GeForce Experience, all versions prior to 3.20.2, contains a vulnerability when GameStream is enabled in which an attacker with local system access can corrupt a system file, which may lead to denial of service or escalation of privileges...

CVE-2019-5702

NVIDIA GeForce Experience, all versions prior to 3.20.2, contains a vulnerability when GameStream is enabled in which an attacker with local system access can corrupt a system file, which may lead to denial of service or escalation of privileges...

CVE-2019-5702

Summary: CVE-2019-5702 affects NVIDIA GeForce Experience prior to 3.20.2. When GameStream is enabled, a local attacker with system access can corrupt a system file, leading to denial of service or privilege escalation. The vulnerability affects all versions before 3.20.2; exploitation requires lo...

CVE-2019-5701

NVIDIA GeForce Experience, all versions prior to 3.20.0.118, contains a vulnerability when GameStream is enabled in which an attacker with local system access can load the Intel graphics driver DLLs without validating the path or signature also known as a binary planting or DLL preloading attack,...

CVE-2019-5701

NVIDIA GeForce Experience, all versions prior to 3.20.0.118, contains a vulnerability when GameStream is enabled in which an attacker with local system access can load the Intel graphics driver DLLs without validating the path or signature also known as a binary planting or DLL preloading attack,...

Design/Logic Flaw

NVIDIA GeForce Experience, all versions prior to 3.20.0.118, contains a vulnerability when GameStream is enabled in which an attacker with local system access can load the Intel graphics driver DLLs without validating the path or signature also known as a binary planting or DLL preloading attack,...

CVE-2019-5701

CVE-2019-5701 affects NVIDIA GeForce Experience (all versions prior to 3.20.0.118). The issue arises when GameStream is enabled: an attacker with local access can cause binary planting by loading Intel graphics driver DLLs without validating the path or signature, potentially leading to denial of...

Gamers Hit with Nvidia GPU Driver, GeForce Flaws

Nvidia has issued fixes for high-severity flaws in two popular gaming products, including its graphics driver for Windows and GeForce Experience. The flaws can be exploited to launch an array of malicious attacks – from denial-of-service efforts DoS to escalation of privileges. The majority of th...

CVE-2019-5674

NVIDIA GeForce Experience before 3.18 contains a vulnerability when ShadowPlay or GameStream is enabled. When an attacker has access to the system and creates a hard link, the software does not check for hard link attacks. This behavior may lead to code execution, denial of service, or escalation...

CVE-2019-5674

NVIDIA GeForce Experience before 3.18 contains a vulnerability when ShadowPlay or GameStream is enabled. When an attacker has access to the system and creates a hard link, the software does not check for hard link attacks. This behavior may lead to code execution, denial of service, or escalation...