← Back to CVEs
CVE-2022-42292
MEDIUM5.0
Description
NVIDIA GeForce Experience contains a vulnerability in the NVContainer component, where a user without administrator privileges can create a symbolic link to a file that requires elevated privileges to write to or modify, which may lead to denial of service, escalation of privilege or limited data tampering.
CVE Details
CVSS v3.1 Score5.0
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:H
Attack VectorLOCAL
ComplexityHIGH
Privileges RequiredLOW
User InteractionREQUIRED
Published2/12/2023
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
microsoft:windowsnvidia:geforce_experience
Weaknesses (CWE)
CWE-59CWE-59
References
https://nvidia.custhelp.com/app/answers/detail/a_id/5384(psirt@nvidia.com)
https://nvidia.custhelp.com/app/answers/detail/a_id/5384(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.