A report shows that Nvidia GeForce Experience includes a bug which can allow denial of service and remote code execution, according to Rhino Security Labs. GeForce Experience is an application to help update Nvidia drivers automatically. It is installed along with GeForce GTX graphics card and by default on systems running NVIDIA GeForce products, Nvidia’s brand of GPUs.
In the security report, it revealed that multiple arbitrary file writes through the NVIDIA GeForce Experience (GFE) — CVE-2019-5674— which is installed by default on systems running NVIDIA GeForce products. This bug exists in all versions prior to GeForce Experience 3.18.
To fix the problem, Nvidia released GeForce Experience 22.214.171.124 on March 19. And they have emphasized that GeForce Experience version prior to 3.18 can only fix the bug through upgrading it to the latest version. They recommend users to get the update on their official website: https://www.geforce.com/geforce-experience/download.
Also, Users can have a second choice to try the driver updater - Driver Booster 6 for automatic driver updates. Driver Booster 6 pro supports one-click updating all outdated drivers easily, and you can schedule a specific time to make the updates. Besides Nvidia GeForce Game Ready drivers, Driver Booster 6 pro provides the updates of AMD Radeon Software Adrenalin Edition, Intel Graphics driver and many other driver updates.