GeForce Experience Security Flaw Could Affect PC Gamers, Nvidia Advises Users to Download Update

Advertisement
By Jamshed Avari | Updated: 28 March 2019 11:12 IST
Highlights
  • The threat is rated as severe even though attackers need local access
  • Nvidia has patched the flaw with the latest version of GeForce Experience
  • Nvidia has a dominant position in the discrete gaming GPU market
GeForce Experience Security Flaw Could Affect PC Gamers, Nvidia Advises Users to Download Update

Nvidia has disclosed a security vulnerability with its GeForce Experience software for GeForce graphics card owners that could allow an attacker to execute and escalate privileges for arbitrary code, and carry out denial-of-service attacks. All versions of GeForce Experience prior to version 3.18 are vulnerable, if the ShadowPlay, NvContainer, or GameStream features are enabled. Nvidia advises all users to upgrade to the latest available version to be safe. The risk has been assessed as high severity.

Nvidia has thanked and credited David Yesland of Rhino Security Labs for discovering and reporting this security problem. According to Bleeping Computer, the threat requires an attacker to have access to affected PCs, which limits the potential for misuse. However, other malicious tools that allow remote access to PCs could be used in conjunction with this vulnerability. Not only could an attacker execute malicious code without requiring elevated privileges, but they could also carry out a denial-of-service attack that would result in the affected PC becoming unusable. 

The vulnerability allows malicious code to be substituted for what affected versions of the GeForce Experience software is expecting because it failed to check for hard links, or explicit pointers to resources. No user interaction is required to allow malicious code to be executed, and only the usual low privileges are required. 

Nvidia has stated that its risk assessments are based on an average threat level for all PCs with the affected software installed, which means that some specific installations and configurations are more vulnerable than others. However, all users are advised to update to the latest version of GeForce Experience either by downloading it directly from Nvidia's website or by running the software's built-in auto-updater.

Advertisement

Nvidia currently has the lion's share of discrete GPUs across desktops and laptops, with the latest Steam Hardware Survey pegging its install base as slightly over 75 percent, compared to just under 15 percent for AMD. Of course that figure represents gamers, not the entirety of PC users. 

The GeForce Experience software is used to manage automatic driver updates, and allows gamers to use profiles for games that will optimise settings for better gameplay on their PCs depending on their configurations. The affected features are those that let users capture and share gameplay video, and stream games from a PC with a GeForce GPU to another device such as a portable console.     

Affiliate links may be automatically generated - see our ethics statement for details.
 

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: Nvidia, GeForce, GeForce Experience
Advertisement

Related Stories

Popular Mobile Brands
  1. Vivo X200 FE Global Launch Confirmed; Design Teased
  2. Vivo Y400 Pro 5G India Launch Date Confirmed; Design Revealed
  3. Poco F7 Launch Date, Price in India, Design and Key Features Leaked Online
  4. Oppo Reno 14 5G Series, Watch X2 Mini, Enco Buds 3, Pad SE to Launch Globally
  5. Realme Narzo 80 Lite 5G Launched in India With 6,000mAh Battery: See Price
  6. Vivo T4 Lite 5G to Launch in India Soon; Battery Capacity Revealed
  7. Oppo K13x 5G India Launch Date, Price Range and Key Features Revealed
  8. Boat SmartRing Active Plus Launched in India: Check Price, Features
  1. Bitget Partners UNICEF Unit to Expand Blockchain Training Across India, Other Countries 
  2. WhatsApp Reportedly Working on Ability to Scan Documents on Android Smartphones
  3. ElevenLabs Expands Eleven V3 Text-to-Speech Model With Support for 41 New Languages
  4. Vivo T4 Lite 5G India Launch Confirmed; Battery Capacity, Price Range Teased
  5. TikTok Pushes Deeper Into AI-Generated Video Ads With New Tools
  6. Apple Risks Fresh EU Charge Sheet Over App Store Curbs
  7. The Witcher 4 Will Target 60 FPS on Consoles, but Series S Will Be 'Extremely Challenging' Says CD Projekt Red
  8. Oppo Reno 14 5G Series Global Launch Teased Alongside Watch X2 Mini, Enco Buds 3 and Pad SE
  9. Microsoft Begins Testing AI Agents in Windows 11, Brings Option to Share Recall Snapshots in Europe
  10. watchOS 26 to Bring Control Center Customisation Options with User-Defined Toggles
Gadgets 360 is available in
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.