CVE-2016-3161 — Nvidia Geforce Experience vulnerability

5 documents5 sources

Severity

7.8HIGHNVD

EPSS

0.1%

top 66.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nvidia Geforce Experience

Timeline

PublishedNov 8

Latest updateMay 17

Description

For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and NVTray Plugin unquoted service path vulnerabilities are examples of the unquoted service path vulnerability in Windows. A successful exploit of a vulnerable service installation can enable malicious code to execute on the system at the system/user privilege level. The CVE-2016-3161 ID is for the GameStream unquoted service path.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

▶NVDnvidia/geforce_experience-

Patches

Patch: nvidia.custhelp.com ↗Patch: nvidia.custhelp.com ↗

🔴Vulnerability Details

GHSA

GHSA-qj7h-c8xj-83hq: For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and NVTray Plugin unquoted service path vulnerabilities are examples of the unquoted↗2022-05-17

▶

OSV

linux-lts-xenial vulnerabilities↗2016-12-20

▶

CVEList

CVE-2016-3161: For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and NVTray Plugin unquoted service path vulnerabilities are examples of the unquoted↗2016-11-08

▶

💬Community

Bugzilla

CVE-2016-2180 OpenSSL: OOB read in TS_OBJ_print_bio()↗2016-07-25

▶