CVE-2016-8827
MEDIUMNVIDIA GeForce Experience <3.1.0.52 - Info Disclosure
Title source: llmDescription
NVIDIA GeForce Experience 3.x before GFE 3.1.0.52 contains a vulnerability in NVIDIA Web Helper.exe where a local web API endpoint, /VisualOPS/v.1.0./, lacks proper access control and parameter validation, allowing for information disclosure via a directory traversal attack.
References (4)
Scores
CVSS v3
6.5
EPSS
0.0595
EPSS Percentile
90.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Classification
CWE
CWE-22
Status
published
Affected Products (2)
nvidia/geforce_experience
< 3.1.0.52
Nvidia Corporation/GeForce Experience
< All
Timeline
Published
Dec 16, 2016
Tracked Since
Feb 18, 2026