CVE-2019-5695

Name of the Vulnerable Software and Affected Versions NVIDIA GeForce Experience versions prior to 3.20.1 Windows GPU Display Driver (all versions)

Description The issue concerns a vulnerability in the local service provider component where an attacker with local system and privileged access can incorrectly load Windows system DLLs without validating the path or signature, also known as a binary planting or DLL preloading attack. This may lead to denial of service or information disclosure through code execution.

Recommendations For NVIDIA GeForce Experience versions prior to 3.20.1, update to version 3.20.1 or later to resolve the issue. For Windows GPU Display Driver, at the moment, there is no information about a newer version that contains a fix for this vulnerability.