Lucene search

[email protected]NVD:CVE-2020-5978

HistoryOct 23, 2020 - 6:15 p.m.

CVE-2020-5978

2020-10-2318:15:16

[email protected]

web.nvd.nist.gov

nvidia

geforce experience

vulnerability

folder creation

denial of service

escalation of privileges

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

12.6%

JSON

NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in its services in which a folder is created by nvcontainer.exe under normal user login with LOCAL_SYSTEM privileges which may lead to a denial of service or escalation of privileges.

Affected configurations

Nvd

Node

nvidiageforce_experienceRange<3.20.5.70

VendorProductVersionCPE
nvidiageforce_experience*cpe:2.3:a:nvidia:geforce_experience:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
nvidia	geforce_experience	*	cpe:2.3:a:nvidia:geforce_experience::::::::

References

nvidia.custhelp.com/app/answers/detail/a_id/5076

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

12.6%

JSON

Related for NVD:CVE-2020-5978

cve1 prion1 cvelist1 nvidia1