Imaginationtech: >> Ddk >> 1.17 Security Vulnerabilities
Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger NULL pointer dereference kernel exceptions.
CVSS Score
5.5
EPSS Score
0.0
Published
2025-09-22
Possible memory leak or kernel exceptions caused by reading kernel heap data after free or NULL pointer dereference kernel exception.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-08-09
Software installed and running inside a Guest VM may override Firmware's state and gain access to the GPU.
CVSS Score
5.2
EPSS Score
0.0
Published
2025-06-27
Software installed and running inside a Guest VM may conduct improper GPU system calls to prevent other Guests from running work on the GPU.
CVSS Score
4.3
EPSS Score
0.0
Published
2025-06-27
Possible kernel exceptions caused by reading and writing kernel heap data after free.
CVSS Score
5.7
EPSS Score
0.0
Published
2025-06-16
Software installed and run as a non-privileged user may conduct improper GPU system calls to subvert GPU HW to write to arbitrary physical memory pages.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-06-02
Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory.
CVSS Score
8.2
EPSS Score
0.0
Published
2025-04-18
A GPU kernel can read sensitive data from another GPU kernel (even from another user or app) through an optimized GPU memory region called _local memory_ on various architectures.
CVSS Score
6.5
EPSS Score
0.009
Published
2024-01-16