CVE-2023-4211

Mali GPU Kernel Driver Allows Improper GPU Memory Processing Operations

Basic Information

CVE State: PUBLISHED
Reserved Date: August 07, 2023
Published Date: October 01, 2023
Last Updated: February 04, 2025
Vendor: Arm Ltd
Product: Midgard GPU Kernel Driver, Bifrost GPU Kernel Driver, Valhall GPU Kernel Driver, Arm 5th Gen GPU Architecture Kernel Driver
Description: A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory.
Tags

CVSS Scores

CVSS v3.1

5.5 - MEDIUM

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

SSVC Information

Exploitation: Active
Technical Impact: Total

Exploit Status

Exploited in the Wild: Yes (2023-10-03 00:00:00 UTC) Source

References

https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities

Known Exploited Vulnerability Information

Source	Added Date
CISA	2023-10-03 00:00:00 UTC

Timeline

CVE ID Reserved

August 07, 2023
CVE Published to Public

October 01, 2023
Added to KEVIntel

October 03, 2023