Vulnerabilities > Nvidia > Geforce Experience > 3.0

DATE	CVE	VULNERABILITY TITLE	RISK
2018-11-27	CVE-2018-6263	Unspecified vulnerability in Nvidia Geforce Experience NVIDIA GeForce Experience contains a vulnerability in all versions prior to 3.16 on Windows in which an attacker who has access to a local user account can plant a malicious dynamic link library (DLL) during application installation, which may lead to escalation of privileges. local low complexity nvidia microsoft	4.6
2018-10-02	CVE-2018-6262	Information Exposure vulnerability in Nvidia Geforce Experience NVIDIA GeForce Experience prior to 3.15 contains a vulnerability when GameStream is enabled where limited sensitive user information may be available to users with system access, which may lead to information disclosure. local nvidia CWE-200	1.9
2018-10-02	CVE-2018-6261	Incorrect Permission Assignment for Critical Resource vulnerability in Nvidia Geforce Experience NVIDIA GeForce Experience prior to 3.15 contains a vulnerability when GameStream is enabled which sets incorrect permissions on a file, which may to code execution, denial of service, or escalation of privileges by users with system access. local nvidia CWE-732	4.4
2017-10-16	CVE-2017-0316	Improper Input Validation vulnerability in Nvidia Geforce Experience In GeForce Experience (GFE) 3.x before 3.10.0.55, NVIDIA Installer Framework contains a vulnerability in NVISystemService64 where a value passed from a user to the driver is used without validation, which may lead to denial of service or possible escalation of privileges. local low complexity nvidia microsoft CWE-20	4.6
2017-10-04	CVE-2017-14491	Out-of-bounds Write vulnerability in multiple products Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response. network low complexity thekelleys redhat canonical debian opensuse suse nvidia huawei arista siemens arubanetworks synology CWE-787 critical	9.8
2017-04-28	CVE-2017-6250	Local Code Execution vulnerability in NVIDIA GeForce Experience NVIDIA GeForce Experience contains a vulnerability in NVIDIA Web Helper.exe, where untrusted script execution may lead to violation of application execution policy and local code execution. local low complexity nvidia	4.6
2016-12-16	CVE-2016-8827	Path Traversal vulnerability in Nvidia Geforce Experience NVIDIA GeForce Experience 3.x before GFE 3.1.0.52 contains a vulnerability in NVIDIA Web Helper.exe where a local web API endpoint, /VisualOPS/v.1.0./, lacks proper access control and parameter validation, allowing for information disclosure via a directory traversal attack. network low complexity nvidia CWE-22	5.0