Vulnerability Details CVE-2023-26083
Memory leak vulnerability in Mali GPU Kernel Driver in Midgard GPU Kernel Driver all versions from r6p0 - r32p0, Bifrost GPU Kernel Driver all versions from r0p0 - r42p0, Valhall GPU Kernel Driver all versions from r19p0 - r42p0, and Avalon GPU Kernel Driver all versions from r41p0 - r42p0 allows a non-privileged user to make valid GPU processing operations that expose sensitive kernel metadata.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.1%
CVSS Severity
CVSS v3 Score 3.3
Proposed Action
Arm Mali GPU Kernel Driver contains an information disclosure vulnerability that allows a non-privileged user to make valid GPU processing operations that expose sensitive kernel metadata.
Ransomware Campaign
Unknown
References
- https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
- https://www.cybersecurity-help.cz/vdb/SB2023033049
- https://www.cybersecurity-help.cz/vulnerabilities/74210/
- https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
- https://www.cybersecurity-help.cz/vdb/SB2023033049
- https://www.cybersecurity-help.cz/vulnerabilities/74210/
Products affected by CVE-2023-26083
-
cpe:2.3:a:arm:5th_gen_gpu_architecture_kernel_driver:r41p0
-
cpe:2.3:a:arm:5th_gen_gpu_architecture_kernel_driver:r42p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r0p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r11p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r16p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r16p0-01eac0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r17p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r19p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r1p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r25p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r26p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r28p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r29p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r30p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r30p0-01eac0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r34p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r35p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r36p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r38p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r38p1
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r38p2
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r39p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r40p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r41p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r42p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r7p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r12p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r13p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r19p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r26p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r28p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r28p0-01eac0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r29p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r30p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r30p0-01eac0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r31p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r32p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r6p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r8p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r19p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r19p0-01eac0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r25p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r26p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r28p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r29p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r30p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r30p0-01eac0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r34p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r35p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r36p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r37p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r38p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r38p1
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r38p2
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r39p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r40p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r41p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r42p0