CVE-2025-60749

DLL Hijacking vulnerability in Trimble SketchUp desktop 2025 via crafted libcef.dll used by sketchupwebhelper.exe...

CVE-2025-60749

Trimble SketchUp Desktop 2025 is affected by a DLL hijacking flaw in sketchup_webhelper.exe via a crafted libcef.dll. Root cause: hijacked DLL loading in SketchUp, allowing code execution within the app context (per PT-2025-44631). Affected component/file: libcef.dll used by sketchup_webhelper.ex...

EUVD-2019-15253

Malware in sbrugna...

EUVD-2016-9652

Malware in sbrugna...

(0Day) Electronic Arts Origin Web Helper Service Link Following Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Electronic Arts Origin. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Web Helpe...

NVIDIA GeForce Experience Uncontrolled Search Path Vulnerability

NVIDIA GeForce Experience is graphics card driver update software that helps to check your computer's geforce drivers and update them to the latest version. An uncontrolled search path vulnerability exists in the NVIDIA Web Helper NodeJS Web server in versions prior to NVIDIA GeForce Experience...

CVE-2020-5977

NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in NVIDIA Web Helper NodeJS Web Server in which an uncontrolled search path is used to load a node module, which may lead to code execution, denial of service, escalation of privileges, and information disclosure...

CVE-2019-5678

NVIDIA GeForce Experience versions prior to 3.19 contains a vulnerability in the Web Helper component, in which an attacker with local system access can craft input that may not be properly validated. Such an attack may lead to code execution, denial of service or information disclosure...

CVE-2019-5678

NVIDIA GeForce Experience versions prior to 3.19 contains a vulnerability in the Web Helper component, in which an attacker with local system access can craft input that may not be properly validated. Such an attack may lead to code execution, denial of service or information disclosure...

Information disclosure

NVIDIA GeForce Experience versions prior to 3.19 contains a vulnerability in the Web Helper component, in which an attacker with local system access can craft input that may not be properly validated. Such an attack may lead to code execution, denial of service or information disclosure...

CVE-2019-5678

NVIDIA GeForce Experience versions prior to 3.19 contains a vulnerability in the Web Helper component, in which an attacker with local system access can craft input that may not be properly validated. Such an attack may lead to code execution, denial of service or information disclosure...

CVE-2019-5678

The CVE-2019-5678 issue affects NVIDIA GeForce Experience Web Helper. The vulnerability arises from input handling in the Web Helper component, where attacker-controlled input and local system access may allow code execution, denial of service, or information disclosure. The Lenovo advisory confi...

NVIDIA GeForce Experience Web Helper Component Input Validation Vulnerability

NVIDIA GeForce Experience is a set of automatic update tools for graphics cards from NVIDIA. Web Helper is a component of Web Helper that automatically updates graphics card drivers and supports graphics card performance management and optimization. A security vulnerability exists in the Web Help...

NVIDIA GeForce Experience Local Code Execution Vulnerability

NVIDIA GeForce Experience is a suite of automatic graphics card update tools from NVIDIA. A local code execution vulnerability exists in NVIDIA Web Helper.exe in NVIDIA GeForce Experience. A local attacker could exploit this vulnerability to execute arbitrary code...

CVE-2017-6250

NVIDIA GeForce Experience contains a vulnerability in NVIDIA Web Helper.exe, where untrusted script execution may lead to violation of application execution policy and local code execution...

NVIDIA GeForce Experience Information Disclosure Vulnerability

NVIDIA GeForce Experience is a suite of automatic graphics card update tools from NVIDIA. A security vulnerability exists in the NVIDIA Web Helper.exe file in NVIDIA GeForce Experience version 3.x prior to 3.1.0.52, which stems from the program failing to properly perform access control and...

CVE-2016-8827

NVIDIA GeForce Experience 3.x before GFE 3.1.0.52 contains a vulnerability in NVIDIA Web Helper.exe where a local web API endpoint, /VisualOPS/v.1.0./, lacks proper access control and parameter validation, allowing for information disclosure via a directory traversal attack...

CVE-2016-8827

CVE-2016-8827 affects NVIDIA GeForce Experience 3.x before GFE 3.1.0.52. The vulnerability is in the NVIDIA Web Helper.exe local web API endpoint /VisualOPS/v.1.0./, which lacks proper access control and parameter validation, enabling information disclosure via a directory traversal attack. Impac...