Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2016-5852

Опубликовано: 08 нояб. 2016
Источник: nvd
CVSS3: 7.8
CVSS2: 7.2
EPSS Низкий

Описание

For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and NVTray Plugin unquoted service path vulnerabilities are examples of the unquoted service path vulnerability in Windows. A successful exploit of a vulnerable service installation can enable malicious code to execute on the system at the system/user privilege level. The CVE-2016-5852 ID is for the NVTray Plugin unquoted service path.

Комментарий

CWE-428: Unquoted Search Path or Element

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:nvidia:geforce_experience:*:*:*:*:*:*:*:*
Версия до - (включая)

Одно из

cpe:2.3:h:nvidia:geforce_910m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_920m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_920mx:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_930m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_930mx:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_940m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_940mx:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_945m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_gt_710:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_gt_730:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_gtx_1050:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_gtx_1060:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_gtx_1070:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_gtx_1080:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_gtx_950m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_gtx_960m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:geforce_gtx_965m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:nvs_310:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:nvs_315:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:nvs_510:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:nvs_810:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_k1200:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_k420:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_k620:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_m1000m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_m2000:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_m2000m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_m3000m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_m4000:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_m4000m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_m5000:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_m5000m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_m500m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_m5500:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_m6000:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_m600m:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_p5000:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:quadro_p6000:-:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:titan_x:-:*:*:*:*:*:*:*

EPSS

Процентиль: 15%
0.00048
Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

github логотип

GHSA-2gff-x2x6-mqv3

CVSS3: 7.8
github
больше 3 лет назад

For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and NVTray Plugin unquoted service path vulnerabilities are examples of the unquoted service path vulnerability in Windows. A successful exploit of a vulnerable service installation can enable malicious code to execute on the system at the system/user privilege level. The CVE-2016-5852 ID is for the NVTray Plugin unquoted service path.

EPSS

Процентиль: 15%
0.00048
Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

NVD-CWE-Other