CVE-2017-0317

Summary

All versions of NVIDIA GPU and GeForce Experience installer contain a vulnerability where it fails to set proper permissions on the package extraction path thus allowing a non-privileged user to tamper with the extracted files, potentially leading to escalation of privileges via code execution.

Affected Software

VendorProductVersion RangeStatus
Nvidia CorporationWindows GPU Display DriverAllaffected

Weaknesses

  • Escalation of Privileges

ADP Enrichment

CVE Program Container

Additional References

References