CVE-2018-6263

HIGH

NVIDIA GeForce Experience <3.16 - Privilege Escalation

Title source: llm

Description

NVIDIA GeForce Experience contains a vulnerability in all versions prior to 3.16 on Windows in which an attacker who has access to a local user account can plant a malicious dynamic link library (DLL) during application installation, which may lead to escalation of privileges.

References (2)

Core 2

Core References

Patch, Vendor Advisory x_refsource_confirm

https://nvidia.custhelp.com/app/answers/detail/a_id/4740

Various Sources x_refsource_confirm

https://support.lenovo.com/us/en/product_security/LEN-25444

Scores

CVSS v3 7.8

EPSS 0.0005

EPSS Percentile 16.0%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published

Products (1)

nvidia/geforce_experience < 3.16

Published Nov 27, 2018

Tracked Since Feb 18, 2026