Software installed and run as a non-privileged user may conduct improper GPU system calls to achieve unauthorised reads and writes of physical memory from the GPU HW.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.imaginationtech.com/gpu-driver-vulnerabilities/ |
History
Sun, 01 Dec 2024 23:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Imaginationtech
Imaginationtech ddk |
|
CPEs | cpe:2.3:a:imaginationtech:ddk:-:*:*:*:*:*:*:* | |
Vendors & Products |
Imaginationtech
Imaginationtech ddk |
|
Metrics |
cvssV3_1
|
Sat, 30 Nov 2024 02:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Software installed and run as a non-privileged user may conduct improper GPU system calls to achieve unauthorised reads and writes of physical memory from the GPU HW. | |
Title | GPU DDK - Duplicate calls to RGXCreateFreeList on the same reservation leads to GPU UAF | |
Weaknesses | CWE-416 | |
References |
|
MITRE
Status: PUBLISHED
Assigner: imaginationtech
Published: 2024-11-30T02:39:25.336Z
Updated: 2024-12-01T23:03:00.888Z
Reserved: 2024-08-15T08:21:31.533Z
Link: CVE-2024-43703
Vulnrichment
Updated: 2024-12-01T23:02:22.312Z
NVD
Status : Received
Published: 2024-11-30T03:15:14.030
Modified: 2024-12-01T23:15:06.383
Link: CVE-2024-43703
Redhat
No data.