Vulnerability Details CVE-2019-5695
NVIDIA GeForce Experience (prior to 3.20.1) and Windows GPU Display Driver (all versions) contains a vulnerability in the local service provider component in which an attacker with local system and privileged access can incorrectly load Windows system DLLs without validating the path or signature (also known as a binary planting or DLL preloading attack), which may lead to denial of service or information disclosure through code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.6%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 6.9
References
- https://nvidia.custhelp.com/app/answers/detail/a_id/4860
- https://nvidia.custhelp.com/app/answers/detail/a_id/4907
- https://safebreach.com/Post/NVIDIA-GPU-Display-Drivers-for-Windows-and-GFE-Software-DLL-Preloading-and-Potential-Abuses-CVE-2019-5694-CVE-2019-5695
- https://nvidia.custhelp.com/app/answers/detail/a_id/4860
- https://nvidia.custhelp.com/app/answers/detail/a_id/4907
- https://safebreach.com/Post/NVIDIA-GPU-Display-Drivers-for-Windows-and-GFE-Software-DLL-Preloading-and-Potential-Abuses-CVE-2019-5694-CVE-2019-5695
Products affected by CVE-2019-5695
-
cpe:2.3:a:nvidia:geforce_experience:-
-
cpe:2.3:a:nvidia:geforce_experience:3.0
-
cpe:2.3:a:nvidia:geforce_experience:3.0.6
-
cpe:2.3:a:nvidia:geforce_experience:3.0.7
-
cpe:2.3:a:nvidia:geforce_experience:3.1.0
-
cpe:2.3:a:nvidia:geforce_experience:3.1.0.52
-
cpe:2.3:a:nvidia:geforce_experience:3.1.2
-
cpe:2.3:a:nvidia:geforce_experience:3.10.0
-
cpe:2.3:a:nvidia:geforce_experience:3.10.0.55
-
cpe:2.3:a:nvidia:geforce_experience:3.11.0
-
cpe:2.3:a:nvidia:geforce_experience:3.12.0
-
cpe:2.3:a:nvidia:geforce_experience:3.13.0
-
cpe:2.3:a:nvidia:geforce_experience:3.13.1
-
cpe:2.3:a:nvidia:geforce_experience:3.14
-
cpe:2.3:a:nvidia:geforce_experience:3.14.1
-
cpe:2.3:a:nvidia:geforce_experience:3.15
-
cpe:2.3:a:nvidia:geforce_experience:3.16
-
cpe:2.3:a:nvidia:geforce_experience:3.17
-
cpe:2.3:a:nvidia:geforce_experience:3.18
-
cpe:2.3:a:nvidia:geforce_experience:3.19
-
cpe:2.3:a:nvidia:geforce_experience:3.2.0
-
cpe:2.3:a:nvidia:geforce_experience:3.2.2
-
cpe:2.3:a:nvidia:geforce_experience:3.20
-
cpe:2.3:a:nvidia:geforce_experience:3.3.0
-
cpe:2.3:a:nvidia:geforce_experience:3.4.0
-
cpe:2.3:a:nvidia:geforce_experience:3.5.0
-
cpe:2.3:a:nvidia:geforce_experience:3.6.0
-
cpe:2.3:a:nvidia:geforce_experience:3.6.0.74
-
cpe:2.3:a:nvidia:geforce_experience:3.7.0
-
cpe:2.3:a:nvidia:geforce_experience:3.8.0
-
cpe:2.3:a:nvidia:geforce_experience:3.9.0
-
cpe:2.3:a:nvidia:gpu_driver:-
-
cpe:2.3:a:nvidia:gpu_driver:195.22
-
cpe:2.3:a:nvidia:gpu_driver:304
-
cpe:2.3:a:nvidia:gpu_driver:304.00
-
cpe:2.3:a:nvidia:gpu_driver:304.123
-
cpe:2.3:a:nvidia:gpu_driver:304.125
-
cpe:2.3:a:nvidia:gpu_driver:304.131
-
cpe:2.3:a:nvidia:gpu_driver:304.79
-
cpe:2.3:a:nvidia:gpu_driver:304.88
-
cpe:2.3:a:nvidia:gpu_driver:310.00
-
cpe:2.3:a:nvidia:gpu_driver:310.44
-
cpe:2.3:a:nvidia:gpu_driver:313.00
-
cpe:2.3:a:nvidia:gpu_driver:313.30
-
cpe:2.3:a:nvidia:gpu_driver:319.00
-
cpe:2.3:a:nvidia:gpu_driver:325.00
-
cpe:2.3:a:nvidia:gpu_driver:331
-
cpe:2.3:a:nvidia:gpu_driver:331.00
-
cpe:2.3:a:nvidia:gpu_driver:331.104
-
cpe:2.3:a:nvidia:gpu_driver:331.113
-
cpe:2.3:a:nvidia:gpu_driver:334
-
cpe:2.3:a:nvidia:gpu_driver:334.16
-
cpe:2.3:a:nvidia:gpu_driver:334.21
-
cpe:2.3:a:nvidia:gpu_driver:337
-
cpe:2.3:a:nvidia:gpu_driver:337.19
-
cpe:2.3:a:nvidia:gpu_driver:337.25
-
cpe:2.3:a:nvidia:gpu_driver:340
-
cpe:2.3:a:nvidia:gpu_driver:340.52
-
cpe:2.3:a:nvidia:gpu_driver:340.65
-
cpe:2.3:a:nvidia:gpu_driver:340.76
-
cpe:2.3:a:nvidia:gpu_driver:340.96
-
cpe:2.3:a:nvidia:gpu_driver:340.98
-
cpe:2.3:a:nvidia:gpu_driver:341.92
-
cpe:2.3:a:nvidia:gpu_driver:341.96
-
cpe:2.3:a:nvidia:gpu_driver:341.98
-
cpe:2.3:a:nvidia:gpu_driver:342.00
-
cpe:2.3:a:nvidia:gpu_driver:343
-
cpe:2.3:a:nvidia:gpu_driver:343.22
-
cpe:2.3:a:nvidia:gpu_driver:343.36
-
cpe:2.3:a:nvidia:gpu_driver:346
-
cpe:2.3:a:nvidia:gpu_driver:346.59
-
cpe:2.3:a:nvidia:gpu_driver:346.72
-
cpe:2.3:a:nvidia:gpu_driver:349
-
cpe:2.3:a:nvidia:gpu_driver:349.12
-
cpe:2.3:a:nvidia:gpu_driver:349.16
-
cpe:2.3:a:nvidia:gpu_driver:352
-
cpe:2.3:a:nvidia:gpu_driver:352.0
-
cpe:2.3:a:nvidia:gpu_driver:352.09
-
cpe:2.3:a:nvidia:gpu_driver:352.63
-
cpe:2.3:a:nvidia:gpu_driver:354.35
-
cpe:2.3:a:nvidia:gpu_driver:354.99
-
cpe:2.3:a:nvidia:gpu_driver:358
-
cpe:2.3:a:nvidia:gpu_driver:358.16
-
cpe:2.3:a:nvidia:gpu_driver:358.87
-
cpe:2.3:a:nvidia:gpu_driver:361
-
cpe:2.3:a:nvidia:gpu_driver:361.91
-
cpe:2.3:a:nvidia:gpu_driver:361.93.02
-
cpe:2.3:a:nvidia:gpu_driver:362.77
-
cpe:2.3:a:nvidia:gpu_driver:365.19
-
cpe:2.3:a:nvidia:gpu_driver:367
-
cpe:2.3:a:nvidia:gpu_driver:367.44
-
cpe:2.3:a:nvidia:gpu_driver:367.54
-
cpe:2.3:a:nvidia:gpu_driver:368.39
-
cpe:2.3:a:nvidia:gpu_driver:368.69
-
cpe:2.3:a:nvidia:gpu_driver:368.81
-
cpe:2.3:a:nvidia:gpu_driver:370.23
-
cpe:2.3:a:nvidia:gpu_driver:373.06
-
cpe:2.3:a:nvidia:gpu_driver:375
-
cpe:2.3:a:nvidia:gpu_driver:375.63
-
cpe:2.3:a:nvidia:gpu_driver:390
-
cpe:2.3:a:nvidia:gpu_driver:390.141
-
cpe:2.3:a:nvidia:gpu_driver:392.63
-
cpe:2.3:a:nvidia:gpu_driver:418
-
cpe:2.3:a:nvidia:gpu_driver:427.11
-
cpe:2.3:a:nvidia:gpu_driver:450
-
cpe:2.3:a:nvidia:gpu_driver:450.102.04
-
cpe:2.3:a:nvidia:gpu_driver:452.77
-
cpe:2.3:a:nvidia:gpu_driver:460
-
cpe:2.3:a:nvidia:gpu_driver:460.32.03
-
cpe:2.3:a:nvidia:gpu_driver:461.09
-
cpe:2.3:a:nvidia:gpu_driver:r21.2
-
cpe:2.3:a:nvidia:gpu_driver:r304.125
-
cpe:2.3:a:nvidia:gpu_driver:r331.00
-
cpe:2.3:a:nvidia:gpu_driver:r331.112
-
cpe:2.3:a:nvidia:gpu_driver:r340.00
-
cpe:2.3:a:nvidia:gpu_driver:r340.65
-
cpe:2.3:a:nvidia:gpu_driver:r343.00
-
cpe:2.3:a:nvidia:gpu_driver:r343.36
-
cpe:2.3:a:nvidia:gpu_driver:r346.00
-
cpe:2.3:a:nvidia:gpu_driver:r346.22
-
cpe:2.3:a:nvidia:gpu_driver:r39
-
cpe:2.3:o:microsoft:windows:-