exploitDog

CVE-2020-5978

Опубликовано: 23 окт. 2020

Источник: nvd

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in its services in which a folder is created by nvcontainer.exe under normal user login with LOCAL_SYSTEM privileges which may lead to a denial of service or escalation of privileges.

Ссылки

https://nvidia.custhelp.com/app/answers/detail/a_id/5076
Patch
Vendor Advisory
https://nvidia.custhelp.com/app/answers/detail/a_id/5076
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:nvidia:geforce_experience:*:*:*:*:*:*:*:*

Версия до 3.20.5.70 (исключая)

EPSS

Процентиль: 17%

0.00054

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-c4v9-8xjg-8hcc

github

больше 3 лет назад

NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in its services in which a folder is created by nvcontainer.exe under normal user login with LOCAL_SYSTEM privileges which may lead to a denial of service or escalation of privileges.

EPSS

Процентиль: 17%

0.00054

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

NVD-CWE-noinfo