Vulnerability Description
For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and NVTray Plugin unquoted service path vulnerabilities are examples of the unquoted service path vulnerability in Windows. A successful exploit of a vulnerable service installation can enable malicious code to execute on the system at the system/user privilege level. The CVE-2016-5852 ID is for the NVTray Plugin unquoted service path.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Geforce Experience | <= - |
| Nvidia | Geforce 910M | - |
| Nvidia | Geforce 920M | - |
| Nvidia | Geforce 920Mx | - |
| Nvidia | Geforce 930M | - |
| Nvidia | Geforce 930Mx | - |
| Nvidia | Geforce 940M | - |
| Nvidia | Geforce 940Mx | - |
| Nvidia | Geforce 945M | - |
| Nvidia | Geforce Gt 710 | - |
| Nvidia | Geforce Gt 730 | - |
| Nvidia | Geforce Gtx 1050 | - |
| Nvidia | Geforce Gtx 1060 | - |
| Nvidia | Geforce Gtx 1070 | - |
| Nvidia | Geforce Gtx 1080 | - |
| Nvidia | Geforce Gtx 950M | - |
| Nvidia | Geforce Gtx 960M | - |
| Nvidia | Geforce Gtx 965M | - |
| Nvidia | Nvs 310 | - |
| Nvidia | Nvs 315 | - |
References
- http://nvidia.custhelp.com/app/answers/detail/a_id/4213PatchVendor Advisory
- http://www.securityfocus.com/bid/93251
- https://support.lenovo.com/us/en/product_security/ps500070
- http://nvidia.custhelp.com/app/answers/detail/a_id/4213PatchVendor Advisory
- http://www.securityfocus.com/bid/93251
- https://support.lenovo.com/us/en/product_security/ps500070
FAQ
What is CVE-2016-5852?
CVE-2016-5852 is a vulnerability with a CVSS score of 7.8 (HIGH). For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and NVTray Plugin unquoted service path vulnerabilities are examples of the unquoted service path vulnerability in Windows. A successfu...
How severe is CVE-2016-5852?
CVE-2016-5852 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-5852?
Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Geforce Experience, Nvidia Geforce 910M, Nvidia Geforce 920M, Nvidia Geforce 920Mx, Nvidia Geforce 930M.