Which can cause you to lose access to your own system and with little power. Potentially leading to a denial of service, escalation of privilege, or limited data tampering. Where an admin user can create a symbolic link to a file requiring higher privileges to write or modify. Leading to an escalation of privileges and code execution.Īs for the last listed vulnerability, there is one in the NVContainer component. Here the attacker with user-level privilege may load any DLL when it is launched. Data tampering is only via the installer and no explicit control over the vulnerability is available.Īnother threat is an uncontrolled search path in all installers.
Making it seem like you may have accidentally deleted a file but in fact, it’s someone else doing it for you. So if you run the installer from a compromised directory a malicious hacker can delete files. Where, if installing GeForce Experience, it may delete data from a linked location. On the highest level on the CVSS and CWE scores, the vulnerability is with the installer. What security issues does GeForce Experience have?
0 kommentar(er)
