CVE-2019-5678: Input Validation
First published: Fri May 31 2019(Updated: )
NVIDIA GeForce Experience versions prior to 3.19 contains a vulnerability in the Web Helper component, in which an attacker with local system access can craft input that may not be properly validated. Such an attack may lead to code execution, denial of service or information disclosure.
Credit: psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NVIDIA GeForce Experience | <3.19 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this NVIDIA GeForce Experience vulnerability?
The vulnerability ID is CVE-2019-5678.
What is the severity level of CVE-2019-5678?
The severity level of CVE-2019-5678 is high with a score of 7.8.
What is the affected software for CVE-2019-5678?
The affected software is NVIDIA GeForce Experience versions prior to 3.19.
What can an attacker achieve with CVE-2019-5678?
An attacker with local system access can craft input that may lead to code execution, denial of service, or information disclosure.
How can I fix CVE-2019-5678?
Update your NVIDIA GeForce Experience to version 3.19 or newer.
- collector/nvd-index
- agent/weakness
- agent/type
- agent/references
- agent/severity
- agent/author
- agent/tags
- agent/description
- agent/event
- agent/remedy
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/nvidia
- canonical/nvidia geforce experience
- vendor/microsoft
- canonical/microsoft windows