Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2023-26083
HistoryApr 06, 2023 - 4:15 p.m.

CVE-2023-26083

2023-04-0616:15:07
CWE-401
[email protected]
web.nvd.nist.gov
377
In Wild
20
cve-2023-26083
memory leak
mali gpu
kernel driver
midgard
bifrost
valhall
avalon
vulnerability
nvd

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

5.8 Medium

AI Score

Confidence

Low

0.038 Low

EPSS

Percentile

91.9%

JSON

Memory leak vulnerability in Mali GPU Kernel Driver in Midgard GPU Kernel Driver all versions from r6p0 - r32p0, Bifrost GPU Kernel Driver all versions from r0p0 - r42p0, Valhall GPU Kernel Driver all versions from r19p0 - r42p0, and Avalon GPU Kernel Driver all versions from r41p0 - r42p0 allows a non-privileged user to make valid GPU processing operations that expose sensitive kernel metadata.

Affected configurations

NVD
Node
armavalon_gpu_kernel_driverRanger41p0r43p0
OR
armbifrost_gpu_kernel_driverRanger0p0r43p0
OR
armmidgardRanger6p0r32p0
OR
armvalhall_gpu_kernel_driverRanger19p0r43p0

Social References

More

Related

attackerkb 1
cisa_kev 1
prion 1
nessus 1
cvelist 1
nvd 1
malwarebytes 1
thn 5
googleprojectzero 1
attackerkb
attackerkb
CVE-2023-26083
2023-04-06 00:00:00
cisa_kev
cisa_kev
Arm Mali GPU Kernel Driver Information Disclosure Vulnerability
2023-04-07 00:00:00
prion
prion
Memory corruption
2023-04-06 16:15:00
nessus
nessus
Arm Mali GPU Kernel Driver < r43p0 Information Exposure (CVE-2023-26083)
2023-06-27 00:00:00
cvelist
cvelist
CVE-2023-26083
2023-04-06 00:00:00
nvd
nvd
CVE-2023-26083
2023-04-06 16:15:07
malwarebytes
malwarebytes
Update Android now! Google patches three actively exploited zero-days
2023-07-06 01:00:00
thn
thn
Google Releases Android Patch Update for 3 Actively Exploited Vulnerabilities
2023-07-07 07:24:00
Arm Issues Patch for Mali GPU Kernel Driver Vulnerability Amidst Ongoing Exploitation
2023-10-03 04:58:00
CISA Warns of 5 Actively Exploited Security Flaws: Urgent Action Required
2023-04-10 06:25:00
googleprojectzero
googleprojectzero
Analyzing a Modern In-the-wild Android Exploit
2023-09-19 00:00:00

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

5.8 Medium

AI Score

Confidence

Low

0.038 Low

EPSS

Percentile

91.9%

JSON
Related for CVE-2023-26083
attackerkb1cisa_kev1prion1nessus1cvelist1nvd1malwarebytes1thn5googleprojectzero1