cbcvebase.
CVE-2025-0050
published 2025-04-07

CVE-2025-0050: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace…

PriorityP426medium5.9CVSS 3.1
AVLACLPRNUINSUCLILAL
EPSS
0.15%
4.3th percentile
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a non-privileged user process to make valid GPU processing operations, including via WebGL or WebGPU, to access a limited amount outside of buffer bounds.This issue affects Bifrost GPU Userspace Driver: from r0p0 through r49p2, from r50p0 through r51p0; Valhall GPU Userspace Driver: from r19p0 through r49p2, from r50p0 through r53p0; Arm 5th Gen GPU Architecture Userspace Driver: from r41p0 through r49p2, from r50p0 through r53p0.

Affected

13 ranges
VendorProductVersion rangeFixed in
arm5th_gen_gpu_architecture_userspace_driver>= r41p0 < r49p3r49p3
arm5th_gen_gpu_architecture_userspace_driver>= r50p0 < r54p0r54p0
armbifrost_gpu_userspace_driver>= r0p0 < r49p3r49p3
armbifrost_gpu_userspace_driverr50p0 – r51p0
armvalhall_gpu_userspace_driver>= r19p0 < r49p3r49p3
armvalhall_gpu_userspace_driver>= r50p0 < r54p0r54p0
arm_ltdarm_5th_gen_gpu_architecture_userspace_driverr41p0 – r49p2
arm_ltdarm_5th_gen_gpu_architecture_userspace_driverr50p0 – r53p0
arm_ltdbifrost_gpu_userspace_driverr0p0 – r49p2
arm_ltdbifrost_gpu_userspace_driverr50p0 – r51p0
arm_ltdvalhall_gpu_userspace_driverr19p0 – r49p2
arm_ltdvalhall_gpu_userspace_driverr50p0 – r53p0
googleandroid
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.