cnvd - cnvd-2021-55174

CNVD-2021-55174

Vulnerability from cnvd - Published: 2021-07-27

Title

NVIDIA GeForce Experience跨站脚本漏洞

Description

NVIDIA GeForce Experience是美国英伟达（Nvidia）公司的一套显卡自动更新工具。该产品能够自动更新显卡驱动程序，并支持显卡性能管理和优化等。 NVIDIA GeForce Experience 中存在跨站脚本漏洞，攻击者可通过诱导用户通过浏览器点击一个恶意格式的链接，并输入他们的登录信息，恶意站点可以访问用户登录会话的令牌。

Severity

中

Patch Name

NVIDIA GeForce Experience跨站脚本漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://nvidia.custhelp.com/app/answers/detail/a_id/5199

Reference

https://www.cybersecurity-help.cz/vdb/SB2021062501

Impacted products

Name
NVIDIA GeForce Experience <3.23

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-1073"
    }
  },
  "description": "NVIDIA GeForce Experience\u662f\u7f8e\u56fd\u82f1\u4f1f\u8fbe\uff08Nvidia\uff09\u516c\u53f8\u7684\u4e00\u5957\u663e\u5361\u81ea\u52a8\u66f4\u65b0\u5de5\u5177\u3002\u8be5\u4ea7\u54c1\u80fd\u591f\u81ea\u52a8\u66f4\u65b0\u663e\u5361\u9a71\u52a8\u7a0b\u5e8f\uff0c\u5e76\u652f\u6301\u663e\u5361\u6027\u80fd\u7ba1\u7406\u548c\u4f18\u5316\u7b49\u3002\n\nNVIDIA GeForce Experience \u4e2d\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u8bf1\u5bfc\u7528\u6237\u901a\u8fc7\u6d4f\u89c8\u5668\u70b9\u51fb\u4e00\u4e2a\u6076\u610f\u683c\u5f0f\u7684\u94fe\u63a5\uff0c\u5e76\u8f93\u5165\u4ed6\u4eec\u7684\u767b\u5f55\u4fe1\u606f\uff0c\u6076\u610f\u7ad9\u70b9\u53ef\u4ee5\u8bbf\u95ee\u7528\u6237\u767b\u5f55\u4f1a\u8bdd\u7684\u4ee4\u724c\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://nvidia.custhelp.com/app/answers/detail/a_id/5199",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-55174",
  "openTime": "2021-07-27",
  "patchDescription": "NVIDIA GeForce Experience\u662f\u7f8e\u56fd\u82f1\u4f1f\u8fbe\uff08Nvidia\uff09\u516c\u53f8\u7684\u4e00\u5957\u663e\u5361\u81ea\u52a8\u66f4\u65b0\u5de5\u5177\u3002\u8be5\u4ea7\u54c1\u80fd\u591f\u81ea\u52a8\u66f4\u65b0\u663e\u5361\u9a71\u52a8\u7a0b\u5e8f\uff0c\u5e76\u652f\u6301\u663e\u5361\u6027\u80fd\u7ba1\u7406\u548c\u4f18\u5316\u7b49\u3002\r\n\r\nNVIDIA GeForce Experience \u4e2d\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u8bf1\u5bfc\u7528\u6237\u901a\u8fc7\u6d4f\u89c8\u5668\u70b9\u51fb\u4e00\u4e2a\u6076\u610f\u683c\u5f0f\u7684\u94fe\u63a5\uff0c\u5e76\u8f93\u5165\u4ed6\u4eec\u7684\u767b\u5f55\u4fe1\u606f\uff0c\u6076\u610f\u7ad9\u70b9\u53ef\u4ee5\u8bbf\u95ee\u7528\u6237\u767b\u5f55\u4f1a\u8bdd\u7684\u4ee4\u724c\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "NVIDIA GeForce Experience\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "NVIDIA GeForce Experience \u003c3.23"
  },
  "referenceLink": "https://www.cybersecurity-help.cz/vdb/SB2021062501",
  "serverity": "\u4e2d",
  "submitTime": "2021-06-29",
  "title": "NVIDIA GeForce Experience\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e"
}

CVE-2021-1073 (GCVE-0-2021-1073)

Vulnerability from cvelistv5 – Published: 2021-06-25 19:25 – Updated: 2024-08-03 15:55

Summary

NVIDIA GeForce Experience, all versions prior to 3.23, contains a vulnerability in the login flow when a user tries to log in by using a browser, while, at the same time, any other web page is loaded in other tabs of the same browser. In this situation, the web page can get access to the token of the user login session, leading to the possibility that the user’s account is compromised. This may lead to the targeted user’s data being accessed, altered, or lost.

Severity ?

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

CWE

denial of service, information disclosure, or data loss

Assigner

nvidia

References

URL

Tags

https://nvidia.custhelp.com/app/answers/detail/a_…

x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	NVIDIA	NVIDIA GeForce Experience Software	Affected: All versions prior to 3.23

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:55:18.629Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5199"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "NVIDIA GeForce Experience Software",
          "vendor": "NVIDIA",
          "versions": [
            {
              "status": "affected",
              "version": "All versions prior to 3.23"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "NVIDIA GeForce Experience, all versions prior to 3.23, contains a vulnerability in the login flow when a user tries to log in by using a browser, while, at the same time, any other web page is loaded in other tabs of the same browser. In this situation, the web page can get access to the token of the user login session, leading to the possibility that the user\u2019s account is compromised. This may lead to the targeted user\u2019s data being accessed, altered, or lost."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "denial of service, information disclosure, or data loss",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-07-13T11:12:55",
        "orgId": "9576f279-3576-44b5-a4af-b9a8644b2de6",
        "shortName": "nvidia"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5199"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@nvidia.com",
          "ID": "CVE-2021-1073",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "NVIDIA GeForce Experience Software",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "All versions prior to 3.23"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "NVIDIA"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "NVIDIA GeForce Experience, all versions prior to 3.23, contains a vulnerability in the login flow when a user tries to log in by using a browser, while, at the same time, any other web page is loaded in other tabs of the same browser. In this situation, the web page can get access to the token of the user login session, leading to the possibility that the user\u2019s account is compromised. This may lead to the targeted user\u2019s data being accessed, altered, or lost."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": {
          "cvss": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "denial of service, information disclosure, or data loss"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://nvidia.custhelp.com/app/answers/detail/a_id/5199",
              "refsource": "CONFIRM",
              "url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5199"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9576f279-3576-44b5-a4af-b9a8644b2de6",
    "assignerShortName": "nvidia",
    "cveId": "CVE-2021-1073",
    "datePublished": "2021-06-25T19:25:10",
    "dateReserved": "2020-11-12T00:00:00",
    "dateUpdated": "2024-08-03T15:55:18.629Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2021-55174

CVE-2021-1073 (GCVE-0-2021-1073)

Tags

Sightings

Nomenclature