Unrated severityNVD Advisory· Published Nov 12, 2019· Updated Aug 4, 2024

CVE-2019-5695

Description

NVIDIA GeForce Experience (prior to 3.20.1) and Windows GPU Display Driver (all versions) contains a vulnerability in the local service provider component in which an attacker with local system and privileged access can incorrectly load Windows system DLLs without validating the path or signature (also known as a binary planting or DLL preloading attack), which may lead to denial of service or information disclosure through code execution.

Affected products

Nvidia/Geforce Experiencecpe-rescue
Range: prior to 3.20.1
Nvidia/Display Driver for Windowscpe-rescue
Range: all versions

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

nvidia.custhelp.com/app/answers/detail/a_id/4860mitrex_refsource_CONFIRM
nvidia.custhelp.com/app/answers/detail/a_id/4907mitrex_refsource_CONFIRM
safebreach.com/Post/NVIDIA-GPU-Display-Drivers-for-Windows-and-GFE-Software-DLL-Preloading-and-Potential-Abuses-CVE-2019-5694-CVE-2019-5695mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000