← Volver a CVEs
CVE-2022-42292
MEDIUM5.0
Descripcion
NVIDIA GeForce Experience contains a vulnerability in the NVContainer component, where a user without administrator privileges can create a symbolic link to a file that requires elevated privileges to write to or modify, which may lead to denial of service, escalation of privilege or limited data tampering.
Detalles CVE
Puntuacion CVSS v3.15.0
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:H
Vector de ataqueLOCAL
ComplejidadHIGH
Privilegios requeridosLOW
Interaccion usuarioREQUIRED
Publicado2/12/2023
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
microsoft:windowsnvidia:geforce_experience
Debilidades (CWE)
CWE-59CWE-59
Referencias
https://nvidia.custhelp.com/app/answers/detail/a_id/5384(psirt@nvidia.com)
https://nvidia.custhelp.com/app/answers/detail/a_id/5384(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.