exploitDog

CVE-2022-41757

Опубликовано: 08 нояб. 2022

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to obtain write access to read-only memory, or obtain access to already freed memory. This affects Valhall r29p0 through r38p1 before r38p2, and r39p0 before r40p0.

Ссылки

https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
Vendor Advisory
https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:arm:valhall_gpu_kernel_driver:*:*:*:*:*:*:*:*

Версия от r29p0 (включая) до r38p2 (исключая)

cpe:2.3:a:arm:valhall_gpu_kernel_driver:r39p0:*:*:*:*:*:*:*

EPSS

Процентиль: 60%

0.00399

Низкий

8.8 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-123

Связанные уязвимости

GHSA-pggw-w357-q8q8

CVSS3: 8.8

github

около 3 лет назад

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to obtain write access to read-only memory, or obtain access to already freed memory. This affects Valhall r29p0 through r38p1 before r38p2, and r39p0 before r40p0.

EPSS

Процентиль: 60%

0.00399

Низкий

8.8 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-123