Описание
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permissions to memory buffers exported as read-only.
This is caused by improper handling of the memory protections for the buffer resource.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:imaginationtech:ddk:23.3:rtm:*:*:*:*:*:*
cpe:2.3:a:imaginationtech:ddk:24.1:-:*:*:*:*:*:*
cpe:2.3:a:imaginationtech:ddk:24.2:-:*:*:*:*:*:*
cpe:2.3:a:imaginationtech:ddk:24.2:rtm1:*:*:*:*:*:*
cpe:2.3:a:imaginationtech:ddk:24.2:rtm2:*:*:*:*:*:*
cpe:2.3:a:imaginationtech:ddk:24.3:-:*:*:*:*:*:*
cpe:2.3:a:imaginationtech:ddk:25.1:-:*:*:*:*:*:*
cpe:2.3:a:imaginationtech:ddk:25.2:-:*:*:*:*:*:*
cpe:2.3:a:imaginationtech:ddk:25.2:rtm:*:*:*:*:*:*
EPSS
Процентиль: 16%
0.00051
Низкий
7.5 High
CVSS3
Дефекты
CWE-280
Связанные уязвимости
CVSS3: 7.5
github
3 месяца назад
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permissions to memory buffers exported as read-only. This is caused by improper handling of the memory protections for the buffer resource.
EPSS
Процентиль: 16%
0.00051
Низкий
7.5 High
CVSS3
Дефекты
CWE-280