Описание
Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware to exploit a TOCTOU race condition and trigger a read and/or write of data outside the allotted memory escaping the virtual machine.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:imaginationtech:ddk:25.2:rtm:*:*:*:*:*:*
EPSS
Процентиль: 11%
0.00038
Низкий
7.4 High
CVSS3
Дефекты
CWE-367
Связанные уязвимости
CVSS3: 7.4
github
3 месяца назад
Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware to exploit a TOCTOU race condition and trigger a read and/or write of data outside the allotted memory escaping the virtual machine.
EPSS
Процентиль: 11%
0.00038
Низкий
7.4 High
CVSS3
Дефекты
CWE-367