CVE-2023-31014 — MEDIUM (4.2)

Q: How severe is CVE-2023-31014?

CVE-2023-31014 has been rated MEDIUM with a CVSS base score of 4.2/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-31014?

Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Geforce Now, Google Android.

Vulnerability Description

NVIDIA GeForce Now for Android contains a vulnerability in the game launcher component, where a malicious application on the same device can process the implicit intent meant for the streamer component. A successful exploit of this vulnerability may lead to limited information disclosure, denial of service, and code execution.

CVSS Score

4.2

MEDIUM

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

LOW

Affected Products

Vendor	Product	Versions
Nvidia	Geforce Now	>= 6.00.32705137, <= 6.04.33108832
Google	Android	-

Related Weaknesses (CWE)

CWE-668 CWE-927

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5476Vendor Advisory
https://nvidia.custhelp.com/app/answers/detail/a_id/5476Vendor Advisory

FAQ

What is CVE-2023-31014?

CVE-2023-31014 is a vulnerability with a CVSS score of 4.2 (MEDIUM). NVIDIA GeForce Now for Android contains a vulnerability in the game launcher component, where a malicious application on the same device can process the implicit intent meant for the streamer componen...

How severe is CVE-2023-31014?

CVE-2023-31014 has been rated MEDIUM with a CVSS base score of 4.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-31014?

Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Geforce Now, Google Android.