Download Certificate- CMOs | ECIO | Most Admired Brand | Most Trusted Company

Critical Vulnerability Patched In NVIDIA GeForce Experience posed a severe threat to the gamers


By MYBRANDBOOK


Critical Vulnerability Patched In NVIDIA GeForce Experience posed a severe threat to the gamers

A serious vulnerability in NVIDIA GeForce Experience posed a severe threat to the gamers. More specifically, the software vulnerability threatened users of Windows systems.

 

Reportedly, researcher, David Yesland from Rhino Security Labs, discovered a serious security flaw in NVIDIA GeForce Experience software. According to his findings, exploiting the vulnerability could lead to denial of service, privilege escalation, and even code execution. GeForce Experience is a supplementary application by NVIDIA installed alongside GeForce products for automatic game settings optimization and added functionality.

 

The researcher has shared his findings in a detailed blog post. As disclosed by Yesland, he observed an arbitrary file write vulnerability affecting the system. Describing in brief about the bug, he stated,

 

“This vulnerability allowed any system file to be overwritten due to insecure permissions set on log files which GFE writes data to as the SYSTEM user. Additionally, one log file contained data that could be user-controlled, allowing commands to be injected into it and then written to as a batch files leading to code execution on other users and potentially privilege escalation.”

 

Yesland has explained the technicalities associated with this flaw in his blog post. He has also demonstrated a detailed PoC in his blog post alongside a basic brief on Github.

 

NVIDIA Patched The Flaw

 

NVIDIA has also acknowledged Yesland’s findings for the vulnerability CVE‑2019‑5674. Explaining this vulnerability in their security advisory, they stated,

 

“NVIDIA GeForce Experience contains a vulnerability when ShadowPlay or GameStream is enabled. When an attacker has access to the system and creates a hard link, the software does not check for hard link attacks. This behavior may lead to code execution, denial of service, or escalation of privileges.”

 

The vendors labeled it a high severity bug that achieved a CVSS base score of 8.8. As explained, the vulnerability affected all GeForce Experience software versions prior to 3.18 for Windows Operating system. NVIDIA has fixed the bug in the software version 3.18. Thus, the users must ensure upgrading their devices to the latest version to avoid potential threats.
 BREAKING NEWS  BREAKING NEWS
Permanent deletion of transactions can make e-rupee anonymous, RB

Permanent deletion of transactions can make e-rupee anonymous, RB...

The Governor of Reserve Bank of India (RBI) stated that the permanent del...

Zscaler unveils Digital Experience Monitoring Copilot

Zscaler unveils Digital Experience Monitoring Copilot...

Zscaler has announced groundbreaking innovations - ZDX Copilot, Hosted Mon...

Ola Krutrim unveils its AI vision for India

Ola Krutrim unveils its AI vision for India...

Ola's artificial intelligence platform, Krutrim has revealed its plans to ...

Tamil Nadu Police Facial Recognition Portal faced breach

Tamil Nadu Police Facial Recognition Portal faced breach...

A security flaw was discovered in the facial recognition webpage of the Ta...

 TECHNO TRENDS  Placeholder image
BHIM to join e-commerce, competing with PhonePe and Google Pay

BHIM to join e-commerce, competing with PhonePe and Google Pay

The government-supported payment software BHIM is getting ready to join t...

The latest version of X helps prevent deepfakes on social medi

The latest version of X helps prevent deepfakes on social medi

To combat deepfakes and shallowfakes, Elon Musk revealed a new update t...

India and Namibia collaborate on a payment system similar to U

India and Namibia collaborate on a payment system similar to U

Once operational, the platform will enable digital transactions in Namibia,...

Sebi issues show-cause notices to six Adani group firms

Sebi issues show-cause notices to six Adani group firms

Sebi issued show-cause notices to six Adani Group firms, including Adani ...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
S.S. Rajamouli and Disney+ Hotstar brings the untold story of

S.S. Rajamouli and Disney+ Hotstar brings the untold story of

Airtel Xstream Play strengthens regional content library, part

Airtel Xstream Play strengthens regional content library, part

Bharti Airtel (“Airtel”), one of India’s leading telecommunications

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

The Enforcement Directorate (ED) has seized businessman Raj Kundra's pro
 MOVERS & SHAKERS  Placeholder image
New Relic names Katrina Wong as CMO

New Relic names Katrina Wong as CMO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech has announced the appointment of Subham Banerjee as its Ch
Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

The cloud-native identity and governance platform solutions provider Saviy
 OPEN YOUR EYES  Placeholder image

Newer Technology Solutions To Ensure Business Continuity During COVID-19
Entire communications is moving towards Webinar :Age of Discovery
Digital Strategies Focuses On Technology To Improve Business Performance
Growing cyberattacks is a raising concern ,it’s time to evaluate cloud-first strategy
CIO’s should have the understanding "Jugaad" to overcome technology challenges
 INTERVIEWS  Placeholder image
InstaSafe’s growth has always been determined by its custome

InstaSafe’s growth has always been determined by its custome

Elastic democratizing search with powerful AI and ML-enabled s

Elastic democratizing search with powerful AI and ML-enabled s

Elastic is always committed to staying ahead of the curve and constantly re
ETEK building a cybersecurity aware community

ETEK building a cybersecurity aware community

ETEK is a Global Managed Security Services expert with 30 years of experien
 HOT PICK  Placeholder image
Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

COLORFUL rolls out an array of gaming laptops

COLORFUL rolls out an array of gaming laptops

COLORFUL launched its incredible series of COLORFUL EVOL P15 gaming laptop
Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies has launched the broadest portfolio of commercial AI lap
 MAKE IN INDIA BRANDS   Placeholder image
VVDN TECHNOLOGIES

VVDN TECHNOLOGIES


BEETEL TELETECH LTD.

BEETEL TELETECH LTD.


WIPRO LTD.  

WIPRO LTD.  


TAC SECURITY SOLUTIONS 

TAC SECURITY SOLUTIONS 


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

Embracing state-of-the-art technologies for enhanced organizational success

In 2023-24, as a technology leader, our primary fo...

Securing and improving the security postures from leading security breaches

We are pioneers in cybersecurity with a track reco...

Embracing Digital technology integration is helping business innovation

To efficiently plan, execute, and monitor technica...

 ICONS OF INDIA  Placeholder image

Technology Icons Of India 2023: Honorary Prof. N. Balakrishnan

Prof. N. Balakrishnan is an Indian aerospace and computer scientist. H...

Technology Icons Of India 2023: Sunil Bharti Mittal

Sunil Bharti Mittal is the Founder and Chairman of Bharti Enterprises,...

Technology Icons Of India 2023: Dr. P D Vaghela

Dr PD Vaghela serves as the Chairperson of Telecommunications Regulato...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

RAH infotech bolstering its position as a leading VAD with its commitment to excellence

The future of the IT industry in India is promising, with several trends and f...

Staying abreast with the latest technologies in this Digital age is the mantra to unlock business opportunities

The IT industry in India is witnessing a significant shift towards digital tra...

Customer Satisfaction is Sound Solutions’ Foundation for Success and Resilience

India is a very big market with a variety of segments like SME, Corporate, Gov...

 PSU  Placeholder image

PGCIL transforming India with its wide power transmission network  

Engaged in power transmission, POWERGRID or PGCIL is a stated owned In...

ITI Limited widening its focus area

ITI Limited is a public sector undertaking company, has manufacturing ...

NIC bridging the digital divide and supporting government in eGovernance  

The National Informatics Centre (NIC) is an Indian government departme...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2023 : LTImindtree

LTIMindtree is a global technology consulting and digital solutions company t...

Most Trusted Brands 2023 : Bharti Airtel Limited

Founded as a manufacturer of bicycle parts in 1976 by Sunil Bharti Mittal, Bha...

Most Trusted Brands 2023 : Nvidia Graphics Pvt. Ltd.

NVIDIA GPUs offer a wide range of features that are specifically designed to a...

 Value-Added Distribution  Value-Added Distribution

REDINGTON INDIA LIMITED

Redington (India) Limited operates in the IT product distribution busi...

SUPERTRON ELECTRONICS PVT. LTD.

Supertron deals in servers, laptops, components, accessories and is a...

BEETEL TELETECH LTD.

: Beetel is one of the oldest and most reputed brands in the Industry,...

 ITFORUM 2024  
 WIITF 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 EMINENT CIO's OF INDIA   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
 TECHNOLOGY DISRUPTION Placeholder image

Impacts of AI on cybersecurity

Impacts of AI on cybersecurity

Meesho transforms customer service experience with Juniper Networks SD-WAN solution

Meesho transforms customer service experience with Juniper Networks SD-WAN solution

Fulcrum Digital plans to hire over 750 digital technology specialists in 2021

Fulcrum Digital plans to hire over 750 digital technology specialists in 2021

Analog Devices Announces Long-Reach Industrial Ethernet Offerings

Analog Devices Announces Long-Reach Industrial Ethernet Offerings

 UNICORNS REVOLUTIONISING Placeholder image

One MobiKwik Systems Private Limited

One MobiKwik Systems Private Limited

CARS24 Services Private Limited

CARS24 Services Private Limited

Lenskart Solutions Private Limited

Lenskart Solutions Private Limited

Honasa Consumer Private Limited

Honasa Consumer Private Limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW