Nvidia Geforce Experience — known CVE vulnerabilities
Every CVE whose affected-product data names Nvidia Geforce Experience, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (37)
CVE-2017-14491 — CVSS 9.8 (critical): Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code…
CVE-2017-6250 — CVSS 8.8 (high): NVIDIA GeForce Experience contains a vulnerability in NVIDIA Web Helper.exe, where untrusted script execution may lead to violation of…
CVE-2016-8812 — CVSS 8.8 (high): For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA GeForce Experience R340 before GFE 2.11.4.125 and R375 before GFE 3.1.0.52…
CVE-2021-1073 — CVSS 8.3 (high): NVIDIA GeForce Experience, all versions prior to 3.23, contains a vulnerability in the login flow when a user tries to log in by using a…
CVE-2022-42291 — CVSS 8.2 (high): NVIDIA GeForce Experience contains a vulnerability in the installer, where a user installing the NVIDIA GeForce Experience software may…
CVE-2021-23175 — CVSS 8.2 (high): NVIDIA GeForce Experience contains a vulnerability in user authorization, where GameStream does not correctly apply individual user access…
CVE-2020-5958 — CVSS 7.8 (high): NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control Panel component in which an attacker with…
CVE-2016-5852 — CVSS 7.8 (high): For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and NVTray Plugin unquoted service path vulnerabilities are examples of…
CVE-2017-0316 — CVSS 7.8 (high): In GeForce Experience (GFE) 3.x before 3.10.0.55, NVIDIA Installer Framework contains a vulnerability in NVISystemService64 where a value…
CVE-2020-5977 — CVSS 7.8 (high): NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in NVIDIA Web Helper NodeJS Web Server in which an…
CVE-2019-5701 — CVSS 7.8 (high): NVIDIA GeForce Experience, all versions prior to 3.20.0.118, contains a vulnerability when GameStream is enabled in which an attacker with…
CVE-2019-5702 — CVSS 7.8 (high): NVIDIA GeForce Experience, all versions prior to 3.20.2, contains a vulnerability when GameStream is enabled in which an attacker with…
CVE-2020-5957 — CVSS 7.8 (high): NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control Panel component in which an attacker with…
CVE-2020-5964 — CVSS 7.8 (high): NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the service host component, in which the application resources…
CVE-2020-5990 — CVSS 7.8 (high): NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in the ShadowPlay component which may lead to local…
CVE-2018-6263 — CVSS 7.8 (high): NVIDIA GeForce Experience contains a vulnerability in all versions prior to 3.16 on Windows in which an attacker who has access to a local…
CVE-2018-6265 — CVSS 7.8 (high): NVIDIA GeForce Experience contains a vulnerability in all versions prior to 3.16 during application installation on Windows 7 in elevated…
CVE-2020-5978 — CVSS 7.8 (high): NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in its services in which a folder is created by…
CVE-2016-3161 — CVSS 7.8 (high): For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and NVTray Plugin unquoted service path vulnerabilities are examples of…
CVE-2019-5678 — CVSS 7.8 (high): NVIDIA GeForce Experience versions prior to 3.19 contains a vulnerability in the Web Helper component, in which an attacker with local…
CVE-2019-5689 — CVSS 7.8 (high): NVIDIA GeForce Experience, all versions prior to 3.20.1, contains a vulnerability in the Downloader component in which a user with local…
CVE-2016-4960 — CVSS 7.3 (high): For the NVIDIA Quadro, NVS, and GeForce products, the NVIDIA NVStreamKMS.sys service component is improperly validating user-supplied data…
CVE-2018-6257 — CVSS 7.0 (high): NVIDIA GeForce Experience all versions prior to 3.14.1 contains a potential vulnerability when GameStream is enabled where improper access…
CVE-2018-6261 — CVSS 7.0 (high): NVIDIA GeForce Experience prior to 3.15 contains a vulnerability when GameStream is enabled which sets incorrect permissions on a file…
CVE-2019-5674 — CVSS 7.0 (high): NVIDIA GeForce Experience before 3.18 contains a vulnerability when ShadowPlay or GameStream is enabled. When an attacker has access to the…
CVE-2022-31611 — CVSS 6.8 (medium): NVIDIA GeForce Experience contains an uncontrolled search path vulnerability in all its client installers, where an attacker with user…
CVE-2019-5676 — CVSS 6.7 (medium): NVIDIA Windows GPU Display driver software for Windows (all versions) contains a vulnerability in which it incorrectly loads Windows system…
CVE-2019-5695 — CVSS 6.5 (medium): NVIDIA GeForce Experience (prior to 3.20.1) and Windows GPU Display Driver (all versions) contains a vulnerability in the local service…
CVE-2016-8827 — CVSS 6.5 (medium): NVIDIA GeForce Experience 3.x before GFE 3.1.0.52 contains a vulnerability in NVIDIA Web Helper.exe where a local web API endpoint…
CVE-2021-1079 — CVSS 6.1 (medium): NVIDIA GeForce Experience, all versions prior to 3.22, contains a vulnerability in GameStream plugins where log files are created using…
CVE-2021-1072 — CVSS 6.0 (medium): NVIDIA GeForce Experience, all versions prior to 3.21, contains a vulnerability in GameStream (rxdiag.dll) where an arbitrary file deletion…
CVE-2018-6266 — CVSS 5.5 (medium): NVIDIA GeForce Experience contains a vulnerability in all versions prior to 3.16 on Windows where a local user may obtain third party…
CVE-2016-4961 — CVSS 5.5 (medium): For the NVIDIA Quadro, NVS, and GeForce products, improper sanitization of parameters in the NVStreamKMS.sys API layer caused a denial of…
CVE-2022-42292 — CVSS 5.0 (medium): NVIDIA GeForce Experience contains a vulnerability in the NVContainer component, where a user without administrator privileges can create a…
CVE-2018-6258 — CVSS 4.7 (medium): NVIDIA GeForce Experience all versions prior to 3.14.1 contains a potential vulnerability during GameStream installation where an attacker…
CVE-2018-6262 — CVSS 2.5 (low): NVIDIA GeForce Experience prior to 3.15 contains a vulnerability when GameStream is enabled where limited sensitive user information may be…
CVE-2018-6259 — CVSS 2.5 (low): NVIDIA GeForce Experience all versions prior to 3.14.1 contains a potential vulnerability when GameStream is enabled, an attacker has…