Lucene search

MitreCVE-2022-41757

HistoryNov 08, 2022 - 3:15 p.m.

CVE-2022-41757

2022-11-0815:15:11

mitre

web.nvd.nist.gov

cve-2022-41757

arm mali

gpu

kernel driver

memory access

nvd

vulnerability

security issue

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.5

Confidence

High

EPSS

0.001

Percentile

42.8%

JSON

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to obtain write access to read-only memory, or obtain access to already freed memory. This affects Valhall r29p0 through r38p1 before r38p2, and r39p0 before r40p0.

Affected configurations

Nvd

Node

armvalhall_gpu_kernel_driverRanger29p0–r38p2

armvalhall_gpu_kernel_driverMatchr39p0

VendorProductVersionCPE
armvalhall_gpu_kernel_driver*cpe:2.3:a:arm:valhall_gpu_kernel_driver:*:*:*:*:*:*:*:*
armvalhall_gpu_kernel_driverr39p0cpe:2.3:a:arm:valhall_gpu_kernel_driver:r39p0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
arm	valhall_gpu_kernel_driver	*	cpe:2.3:a:arm:valhall_gpu_kernel_driver::::::::
arm	valhall_gpu_kernel_driver	r39p0	cpe:2.3:a:arm:valhall_gpu_kernel_driver:r39p0:::::::*

References

developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities

Social References

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.5

Confidence

High

EPSS

0.001

Percentile

42.8%

JSON

Related for CVE-2022-41757