dtns

Severe Nvidia Vulnerability - ThreatWire

Added 2020-10-28 16:19:51 +0000 UTC

By Shannon Morse, ThreatWire

Nvidia is telling gamers to update the GeForce Experience software ASAP if on Windows, to patch two high severity flaws found in the app. The two flaws are CVE 2020 5977 and 2020-5990, the first of which could allow an attacker to target vulnerable machines with code executions, denial of service, and escalation of privileges and information disclosures. The issue resides in the Nvidia Web Helper NodeJS Web Server, in which Node.js runs upon startup to create a webserver connection to Nvidia. An uncontrolled search patch could allow an attacker to use DLL preloading, binary planting, and insecure library loading to levy attacks that take advantage of the flaw.

The second issue resides within the ShadowPlay component, which allows gamers to record and share high quality footage of their gameplay. This one can allow for an attacker to proceed with local privilege escalation, code execution, denial of service attacks and information disclosure as well.

Both of the flaws were patched in version 3.20.5.70 of Geforce Experience, which is available for download now. Any Windows machines previous to this version are affected.

A third one is considered low impact, with CVE 2020-5978. This one would require a local user to already have system privileges, but could allow an attacker to hit the target with privilege escalation or denial of service attacks.

Nvidia has posted about several security flaws and vulnerabilities over the past year related to their software and hardware, of which all have been patched.

WIN A WIFI PINEAPPLE MARK VII! - https://youtube.com/shannonmorse

Nvidia:

https://nvidia.custhelp.com/app/answers/detail/a_id/5076

https://threatpost.com/nvidia-gamers-geforce-experience-flaws/160487/

https://www.zdnet.com/article/nvidia-tackles-code-execution-data-leaks-in-geforce-experience/