See Security Updates for the version to install. If you are using an earlier release, upgrade to the latest release version. Earlier software releases that support this product are also affected. The following table lists the NVIDIA software products affected, versions affected, and the updated version that includes this security update.ĭownload the updates through the GeForce Experience Downloads page, or open the client to automatically apply the security update. NVIDIA recommends evaluating the risk to your specific configuration. The NVIDIA risk assessment is based on an average of risk across a diverse set of installed systems and may not represent the true risk to your local installation. GeForce Experience client software is not affected by Apache Log4j vulnerability CVE-2021-44228, which is also known as Log4Shell. NVIDIA GeForce Experience contains a vulnerability in user authorization, where GameStream does not correctly apply individual user access controls for users on the same device, which, with user intervention, may lead to escalation of privileges, information disclosure, data tampering, and denial of service, affecting other resources beyond the intended security authority of GameStream. Descriptions use CWE™, and base scores and vectors use CVSS v3.1 standards. This section provides a summary of potential vulnerability that this security update addresses and its impact.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |