Tuesday, October 27, 18:42
Home security NVIDIA fixes vulnerabilities in GeForce Experience (GFE) software

NVIDIA fixes vulnerabilities in GeForce Experience (GFE) software

GeForce Experience (GFE)

Η NVIDIA corrected a vulnerability in Windows NVIDIA GeForce Experience (GFE) software which could allow attackers to execute code, to perform denial of service (DoS) attacks or gain access with increased privileges to uninformed systems.

Vulnerability has been named CVE - 2020‑5964 and requires local access (local user access) on the vulnerable device. The attackers could not use this vulnerability remote. However, it can be abused with the help of malicious tools distributed to systems with NVIDIA GFE vulnerable versions.

NVIDIA GeForce Experience (GFE) is a software for them GeForce GTX, RTX, TITAN X and other NVIDIA GeForce graphics cardsn and can be installed in computers running Windows 7 or later.

“Ενημερώνει τους drivers σας, βελτιστοποιεί αυτόματα τις ρυθμίσεις του παιχνιδιού σας και σας παρέχει έναν εύκολο τρόπο να μοιραστείτε τις καλύτερες gaming στιγμές σας με φίλους” λέει η NVIDIA.

Vulnerability is considered moderate in terms of severity. After successfully exploiting it, attackers can execute code on computers Windows running non-updated versions of NVIDIA GFE software.


They can also acquire access to sensitive information or make them useless by making one denial of service attack.

The vulnerability CVE - 2020‑5964 of GeForce Experience, which corrected by update security of July 2020, is described in detail in the table below.

CVE IDDescriptionBase ScoreVector
CVE ‑ 2020‑5964NVIDIA GeForce Experience software contains a vulnerability in the service host component, in which the integrity check of application resources may be missed. Such an attack may lead to code execution, denial of service, or information disclosure.6.5AV: L / AC: L / PR: H / UI: R / S: U / C: H / I: H / A:H

NVIDIA says users with vulnerable versions of NVIDIA GeForce Experience (GFE) software should consult a security professional to evaluate risk for their systems.

Which versions of the NVIDIA GeForce Experience are vulnerable?

The security issue affects Windows computers running versions of the NVIDIA GeForce Experience (GFE) before 3.20.4.

"Previous software branch versions that support this product are also affected“, εξήγησε η NVIDIA. Επομένως, πρέπει να γίνει άμεσα ενημέρωση στη νέα έκδοση.

For information on their systems, NVIDIA GeForce Experience (GFE) users can go to the page GeForce Experience Downloads or start it GFE client to Windows their computers to receive the update using it built-in auto-update mechanism.


Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortresshttps://www.secnews.gr
Pursue Your Dreams & Live!


How to install a .watchface file on Apple Watch

The Apple Watch lets you customize the faces of the watch to display all kinds of useful information. But did you know ...

The five biggest data breaches of the 21st century

Data is becoming more and more sought after as our daily lives become more digitized. The technology giants that monopolize data are ...

Microsoft is limiting the availability of Windows 10 20H2

Microsoft is currently restricting the availability of Windows 10 20H2 to provide all users who want to ...

How to enable the new Chrome Read more feature

The latest version of Google Chrome browser, v86, released earlier this month, contains a secret feature called Read ...

How to choose a custom color for the Start menu

Starting with the October 2020 update, Windows 10 is the default on a theme that removes bright colors from ...

NASA telescope discovers drinking water on the moon

Eleven years ago, a spacecraft changed our view of the moon forever. The data collected by ...

Microsoft: Enhances password spray attack detection capabilities

Microsoft has significantly improved the ability to detect password spray attacks in the Azure Active Directory (Azure AD) and has reached the point ...

How to prevent companies from finding our phone number

In the age of advertising, the more user information is known the more convenient it is for companies. And in particular, the ...

Violation in a psychotherapy clinic led to blackmail of patients

Two years ago, a cyber attack took place in a Finnish psychotherapy clinic, which resulted in data theft and ransom demand. Now,...

Australia: Enhances cybersecurity and privacy!

The Government of New South Wales in Australia has set up a task force to strengthen cybersecurity and protection ...