nvd-json-data-feeds/CVE-2023/CVE-2023-310xx/CVE-2023-31014.json

{
  "id": "CVE-2023-31014",
  "sourceIdentifier": "psirt@nvidia.com",
  "published": "2023-09-20T02:15:20.783",
  "lastModified": "2023-09-22T16:08:59.343",
  "vulnStatus": "Analyzed",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "NVIDIA GeForce Now for Android contains a vulnerability in the game launcher component, where a malicious application on the same device can process the implicit intent meant for the streamer component. A successful exploit of this vulnerability may lead to limited information disclosure, denial of service, and code execution."
    },
    {
      "lang": "es",
      "value": "NVIDIA GeForce Now para Android contiene una vulnerabilidad en el componente de inicio del juego, donde una aplicaci\u00f3n maliciosa en el mismo dispositivo puede procesar la intenci\u00f3n impl\u00edcita destinada al componente de transmisi\u00f3n. Una explotaci\u00f3n exitosa de esta vulnerabilidad puede provocar una divulgaci\u00f3n limitada de informaci\u00f3n, denegaci\u00f3n de servicio y ejecuci\u00f3n de c\u00f3digo."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L",
          "attackVector": "LOCAL",
          "attackComplexity": "LOW",
          "privilegesRequired": "LOW",
          "userInteraction": "REQUIRED",
          "scope": "UNCHANGED",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "availabilityImpact": "LOW",
          "baseScore": 4.8,
          "baseSeverity": "MEDIUM"
        },
        "exploitabilityScore": 1.3,
        "impactScore": 3.4
      },
      {
        "source": "psirt@nvidia.com",
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L",
          "attackVector": "LOCAL",
          "attackComplexity": "HIGH",
          "privilegesRequired": "LOW",
          "userInteraction": "REQUIRED",
          "scope": "UNCHANGED",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "availabilityImpact": "LOW",
          "baseScore": 4.2,
          "baseSeverity": "MEDIUM"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 3.4
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-668"
        }
      ]
    },
    {
      "source": "psirt@nvidia.com",
      "type": "Secondary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-927"
        }
      ]
    }
  ],
  "configurations": [
    {
      "operator": "AND",
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": false,
              "criteria": "cpe:2.3:o:google:android:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F8B9FEC8-73B6-43B8-B24E-1F7C20D91D26"
            }
          ]
        },
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:nvidia:geforce_now:*:*:*:*:*:*:*:*",
              "versionStartIncluding": "6.00.32705137",
              "versionEndIncluding": "6.04.33108832",
              "matchCriteriaId": "B8003B3F-0468-4834-874E-46E43ACB7B8F"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5476",
      "source": "psirt@nvidia.com",
      "tags": [
        "Vendor Advisory"
      ]
    }
  ]
}