Vulnerability Details CVE-2023-4295
A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.0%
CVSS Severity
CVSS v3 Score 7.8
References
- http://packetstormsecurity.com/files/176109/Arm-Mali-CSF-Overflow-Use-After-Free.html
- https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
- http://packetstormsecurity.com/files/176109/Arm-Mali-CSF-Overflow-Use-After-Free.html
- https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
Products affected by CVE-2023-4295
-
cpe:2.3:a:arm:mali_gpu_kernel_driver:r41p0
-
cpe:2.3:a:arm:mali_gpu_kernel_driver:r42p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r29p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r30p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r30p0-01eac0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r34p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r35p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r36p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r37p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r38p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r38p1
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r38p2
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r39p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r40p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r41p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r42p0