NVIDIA released a security update for the NVIDIA GeForce Experience software for Windows to patch a vulnerability that could allow potential local attackers with basic user privileges to elevate privileges, trigger code execution, and perform denial-of-service attacks. The software flaw requires local user access and cannot be exploited remotely, but would-be attackers could take advantage of them by planting malicious tools remotely using various means on a system running a vulnerable version of the software. The fix affects all GeForce Experience versions prior to 3.18.
Source: https://www.bleepingcomputer.com/news/security/nvidia-patches-high-severity-geforce-experience-vulnerability/