Vulnerabilities > Nvidia > Geforce Experience > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-28 | CVE-2017-6250 | Local Code Execution vulnerability in NVIDIA GeForce Experience NVIDIA GeForce Experience contains a vulnerability in NVIDIA Web Helper.exe, where untrusted script execution may lead to violation of application execution policy and local code execution. | 4.6 |
| 2016-12-16 | CVE-2016-8827 | Path Traversal vulnerability in Nvidia Geforce Experience NVIDIA GeForce Experience 3.x before GFE 3.1.0.52 contains a vulnerability in NVIDIA Web Helper.exe where a local web API endpoint, /VisualOPS/v.1.0./, lacks proper access control and parameter validation, allowing for information disclosure via a directory traversal attack. | 5.0 |
| 2016-11-08 | CVE-2016-4961 | Improper Input Validation vulnerability in Nvidia Geforce Experience For the NVIDIA Quadro, NVS, and GeForce products, improper sanitization of parameters in the NVStreamKMS.sys API layer caused a denial of service vulnerability (blue screen crash) within the NVIDIA Windows graphics drivers. | 4.9 |
| 2016-11-08 | CVE-2016-4960 | Improper Input Validation vulnerability in Nvidia Geforce Experience For the NVIDIA Quadro, NVS, and GeForce products, the NVIDIA NVStreamKMS.sys service component is improperly validating user-supplied data through its API entry points causing an elevation of privilege. | 6.9 |