Primary

Context

NVIDIA NVApp Uncontrolled Search Path Element Vulnerability Allowing Code Execution and Privilege Escalation

Vulnerability

A vulnerability has been identified in the NVIDIA NVApp installer for Windows. This issue allows local attackers to manipulate search path elements, potentially leading to unauthorized code execution and elevated privileges. The vulnerability affects all versions of NVIDIA NVApp prior to 11.0.5.260.

Impact

Exploitation of this vulnerability could result in arbitrary code execution with elevated privileges.

Remediation

Users are advised to update to version 11.0.5.260 or later. The latest version can be downloaded from the NVIDIA App site.

Added: Nov 4, 2025, 8:21 PM

Updated: Nov 4, 2025, 8:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NVIDIA NVApp Uncontrolled Search Path Element Vulnerability Allowing Code Execution and Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating