CVE-2015-7866

3 documents3 sources
Severity
7.2HIGH
EPSS
0.1%
top 77.97%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Nvidia GPU Driver
Timeline
PublishedNov 24
Latest updateMay 14

Description

Unquoted Windows search path vulnerability in the Smart Maximize Helper (nvSmartMaxApp.exe) in the Control Panel in the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows allows local users to gain privileges via a Trojan horse application, as demonstrated by C:\Program.exe.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDnvidia/gpu_driver340341.92+2

🔴Vulnerability Details

2
GHSA
GHSA-3qqc-5rvx-mv66: Unquoted Windows search path vulnerability in the Smart Maximize Helper (nvSmartMaxApp2022-05-14
CVEList
CVE-2015-7866: Unquoted Windows search path vulnerability in the Smart Maximize Helper (nvSmartMaxApp2015-11-24
CVE-2015-7866 (HIGH CVSS 7.2) | Unquoted Windows search path vulner | cvebase.io