CVE-2016-8812

high

Published 2016-11-08 · Modified 2026-05-06

CVSS v3

8.8

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CVSS v2

7.2

VIR risk

8.8

Description

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA GeForce Experience R340 before GFE 2.11.4.125 and R375 before GFE 3.1.0.52 contains a vulnerability in the kernel mode layer (nvstreamkms.sys) allowing a user to cause a stack buffer overflow with specially crafted executable paths, leading to a denial of service or escalation of privileges.

Predictions

Exploit likelihood

82%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: psirt@nvidia.com — http://nvidia.custhelp.com/app/answers/detail/a_id/4247

Application impact

Vendor	Product	Versions	Fixed
nvidia	geforce_experience	`{"endIncluding":"-"}`

References

http://nvidia.custhelp.com/app/answers/detail/a_id/4247
http://www.securityfocus.com/bid/93986
https://www.exploit-db.com/exploits/40660/
http://nvidia.custhelp.com/app/answers/detail/a_id/4247
http://www.securityfocus.com/bid/93986
https://www.exploit-db.com/exploits/40660/

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.