Security News NVIDIA GeForce Experience Software Security Updates for Multiple Vulnerabilities When GameStream is Enabled

LASER_oneXM

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
Content source
https://nvidia.custhelp.com/app/answers/detail/a_id/4685/~/security-bulletin:-nvidia-geforce-experience-software-security-updates-for
Updated 08/30/2018 11:55 AM

NVIDIA GeForce Experience contains vulnerabilities when GameStream is enabled which may lead to escalation of privileges, denial of service, or information disclosure.

Vulnerability Details
The following sections summarize the potential vulnerabilities. Descriptions use CWETM and risk assessments follow the CVSS V3 standard.
CVE-2018-6257

NVIDIA GeForce Experience contains a potential vulnerability when GameStream is enabled where improper access control may lead to a denial of service, escalation of privileges, or both.

CVSS V3 Base Score: 8.8
CVSS V3 Vector: AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
CVE-2018-6258

NVIDIA GeForce Experience contains a potential vulnerability during GameStream installation where an attacker who has system access can potentially conduct a Man-in-the-Middle (MitM) attack to obtain sensitive information.

CVSS V3 Base Score: 7.7
CVSS V3 Vector: AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:H
CVE-2018-6259

NVIDIA GeForce Experience contains a potential vulnerability when GameStream is enabled, an attacker has system access, and certain system features are enabled, where limited information disclosure may be possible.
Click to expand...
 
  • Like
Reactions: Weebarra, harlan4096, XhenEd and 4 others
Quassar

Quassar

Level 12
Verified
Well-known
Feb 10, 2012
585
i instaled this soft 1 time long time ago and his def seting wthich over me for optimize games worked worth apply 120 fps instald of 60 while mine monitor worked only on 60hz and such other things


from this time i instal in custome mode drivers: main drivers + physx and nothing more...
 
  • Like
Reactions: Weebarra, AriDfoix, vtqhtr413 and 1 other person
A

AriDfoix

Level 3
Verified
Sep 2, 2018
125
I don't need the extra sauce, so, from about two years I am using this little program only to update my nvidia drivers:

ElPumpo/TinyNvidiaUpdateChecker

Moreover, as ForgottenSeer 58943 said, i go inside autorun and disable the telemetry scheduled tasks that the program set.

Happened to me one day to throw a debugger, and see the nvidia always calling home, when I saw what was the content of the string, I decided to find a way. :ROFLMAO:

I am sure they have many more surprises... :p
 
  • Like
Reactions: Weebarra, Gandalf_The_Grey and vtqhtr413
You must log in or register to reply here.

Similar threads

Ink
    • Thanks
    • Like
    • +Reputation
New Update Security update for VMware Tools v12.3.0 for Windows, and v10.3.26 Linux (CVE-2023-20900)
Replies
0
Views
567
Virtual machines
Ink
Ink
Gandalf_The_Grey
    • Like
NVIDIA releases GPU driver update to fix 29 security flaws
Replies
0
Views
585
System utilities
Gandalf_The_Grey
Gandalf_The_Grey
silversurfer
    • Like
    • +Reputation
    • Thanks
New Update Android Security Updates for August 2023 - 40 Vulnerabilities Fixed
Replies
5
Views
1,015
Android & WearOS
HarborFront
H

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top