Nvidia patches three serious security flaws — what to do now

News
By published

Desktop-software flaw could lead to malware infection

Nvidia GeForce
(Image credit: Shutterstock)

It's been nearly a month since the last round of Nvidia security patches, and lo and behold, we've got more. 

The graphics-card maker issued a security bulletin Oct. 22 warning that versions of its GeForce Experience software prior to 3.20.5.70 had three security flaws, ranging from a very serious "uncontrolled search path" that could be used to load malicious software to a relatively minor privilege-escalation issue. 

None of these flaws can be remotely exploited over the internet, and the attacker must have access to the system. But that attacker could be malware that infects the machine in other ways, such as through email attachments or Trojanized plug-ins or extensions.

GeForce Experience is Nvidia's desktop interface for users of its GeForce graphics cards. The Experience lets you share livestreams and videos as well as manage drivers and supported games. 

Nvidia does have a lot of security patches, but that's not necessarily a bad thing as it means its developers are on the ball. Better to get a lot of patches than to get none at all.

How to update your graphics card

To update the GeForce Experience software, simply open the software and it should auto-update to version 3.20.5.70. (You can find the version number in Settings --> General). If that doesn't work, you can go to the GeForce Experience page on the Nvidia website to download the latest version of the software.

See more Computing News
TOPICS
Paul Wagenseil
Paul Wagenseil

Paul Wagenseil is a senior editor at Tom's Guide focused on security and privacy. He has also been a dishwasher, fry cook, long-haul driver, code monkey and video editor. He's been rooting around in the information-security space for more than 15 years at FoxNews.com, SecurityNewsDaily, TechNewsDaily and Tom's Guide, has presented talks at the ShmooCon, DerbyCon and BSides Las Vegas hacker conferences, shown up in random TV news spots and even moderated a panel discussion at the CEDIA home-technology conference. You can follow his rants on Twitter at @snd_wagenseil.

Latest in GPUs
nvidia rtx 50 series
RTX 5060 Ti release date just tipped for April 16 — HP seemingly confirms Nvidia's next-gen GPUs
Pictures of a PC post-fire
My PC caught on fire recently twice — 5 tips to protect your rig from a similar fate
Nvidia GeForce RTX 5090 on a green and black patterned background
RTX 5090 price continues to rise — prepare to spend around $3,000 for Nvidia's GPU
Nvidia GeForce RTX 5070 Ti
I'm worried about the latest Nvidia RTX 5060 price leak — but one thing could change my mind
RTX 50 series GPUs
I was hyped for Nvidia's RTX 5060 Ti and RTX 5050 — until I saw these leaked specs
Nvidia GeForce RTX 5070 Ti
RTX 5070 can't match RTX 4090 performance in new benchmark — despite Nvidia's claims
Latest in News
Render of the alleged design of the iPhone 17 Pro
iPhone 17 leak claims 8K video recording is coming — here's what we know
NYTimes Connections
NYT Connections today hints and answers — Thursday, March 27 (#655)
iOS 18.4 logo on an iPhone
iOS 18.4 brings a bunch of helpful upgrades to your iPhone — and this is my favorite
Nintendo Direct March 2025 logo
Nintendo Direct March 2025 — Start time and live updates
The Signal app logo displayed on an iPhone, with a screenshot of the Signal app in use displayed on a monitor in the background.
Signal — everything you need to know about the app at the center of the group chat scandal
Robert Downey Jr. revealed as Doctor Doom for "Avengers: Doomsday"
Marvel reveals 'Avengers: Doomsday' casting — the latest updates and every actor
More about gpus
nvidia rtx 50 series

RTX 5060 Ti release date just tipped for April 16 — HP seemingly confirms Nvidia's next-gen GPUs
Pictures of a PC post-fire

My PC caught on fire recently twice — 5 tips to protect your rig from a similar fate
Beats Studio Pro

Beats' best headphones just got a $170 price cut in the Amazon Spring Sale
See more latest