CVE-2020-5976Sensitive Information Exposure in Nvidia Games

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.3%
top 44.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Nvidia GamesNvidia Geforce NOWNvidia Geforce NOW Application
Timeline
PublishedSep 18
Latest updateMay 24

Description

NVIDIA GeForce NOW, versions prior to 2.0.23 (Windows, macOS) and versions prior to 5.31 (Android, Shield TV), contains a vulnerability in the application software where the network test component transmits sensitive information insecurely, which may lead to information disclosure.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

CVEListV5nvidia/nvidia_geforce_now_applicationAll versions prior to 2.0.23 (Windows, macOS), versions prior to 5.31 (Android, SHIELD TV).
NVDnvidia/geforce_now< 2.0.23+1
NVDnvidia/games< 5.31

🔴Vulnerability Details

2
GHSA
GHSA-cxjq-pgg3-g955: NVIDIA GeForce NOW, versions prior to 22022-05-24
CVEList
CVE-2020-5976: NVIDIA GeForce NOW, versions prior to 22020-09-18
CVE-2020-5976 — Sensitive Information Exposure | cvebase