Imagination Technologies Graphics Ddk vulnerabilities
56 known vulnerabilities affecting imagination_technologies/graphics_ddk.
Total CVEs
56
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH38MEDIUM12LOW2
Vulnerabilities
Page 3 of 3
CVE-2024-47894HIGHCVSS 7.1≥ 1.15 RTM, ≤ 24.2 RTM22025-01-13
CVE-2024-47894 [HIGH] CWE-823 CVE-2024-47894: Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmwa
Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to read data outside the Guest's virtualised GPU memory.
nvd
CVE-2024-52938HIGHCVSS 7.8≥ 1.15 RTM, ≤ 24.2 RTM22025-01-13
CVE-2024-52938 [HIGH] CWE-823 CVE-2024-52938: Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmwa
Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to subvert reconstruction activities to trigger a write of data outside the Guest's virtualised GPU memory.
nvd
CVE-2024-47897HIGHCVSS 8.8≥ 23.2 RTM2, ≤ 24.2 RTM22025-01-13
CVE-2024-47897 [HIGH] CWE-787 CVE-2024-47897: Software installed and run as a non-privileged user may conduct improper GPU system calls resulting
Software installed and run as a non-privileged user may conduct improper GPU system calls resulting in platform instability and reboots.
nvd
CVE-2024-47895HIGHCVSS 7.1≥ 1.15 RTM, ≤ 24.2 RTM22025-01-13
CVE-2024-47895 [HIGH] CWE-823 CVE-2024-47895: Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmwa
Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to read data outside the Guest's virtualised GPU memory.
nvd
CVE-2024-52937MEDIUMCVSS 6.7≥ 23.2 RTM2, ≤ 24.2 RTM22025-01-13
CVE-2024-52937 [MEDIUM] CWE-823 CVE-2024-52937: Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmw
Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory.
nvd
CVE-2024-52936MEDIUMCVSS 4.4≥ 1.15 RTM, ≤ 24.2 RTM22025-01-13
CVE-2024-52936 [MEDIUM] CWE-823 CVE-2024-52936: Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmwa
Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to write data outside the Guest's virtualised GPU memory.
nvd
CVE-2024-52935MEDIUMCVSS 4.1≥ 1.15 RTM, ≤ 24.2 RTM22025-01-13
CVE-2024-52935 [MEDIUM] CWE-823 CVE-2024-52935: Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmw
Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory.
nvd
CVE-2024-46972HIGHCVSS 7.8v24.1 RTM2024-12-28
CVE-2024-46972 [HIGH] CWE-911 CVE-2024-46972: Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger
Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions.
nvd
CVE-2024-46973HIGHCVSS 7.8≥ 1.15 RTM, ≤ 24.2 RTM22024-12-28
CVE-2024-46973 [HIGH] CWE-416 CVE-2024-46973: Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger
Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions.
nvd
CVE-2024-43705HIGHCVSS 7.8≥ 1.13 RTM, ≤ 24.2 RTM22024-12-28
CVE-2024-43705 [HIGH] CWE-280 CVE-2024-43705: Software installed and run as a non-privileged user can trigger the GPU kernel driver to write to ar
Software installed and run as a non-privileged user can trigger the GPU kernel driver to write to arbitrary read-only system files that have been mapped into application memory.
nvd
CVE-2024-46971HIGHCVSS 7.8≥ 1.13 RTM, ≤ 24.2 RTM12024-12-13
CVE-2024-46971 [HIGH] CWE-362 CVE-2024-46971: Software installed and run as a non-privileged user may conduct GPU system calls to read and write f
Software installed and run as a non-privileged user may conduct GPU system calls to read and write freed physical memory from the GPU.
nvd
CVE-2024-47892HIGHCVSS 7.8≥ 1.13 RTM, ≤ 24.2 RTM12024-12-13
CVE-2024-47892 [HIGH] CWE-362 CVE-2024-47892: Software installed and run as a non-privileged user may conduct GPU system calls to read and write f
Software installed and run as a non-privileged user may conduct GPU system calls to read and write freed physical memory from the GPU.
nvd
CVE-2024-43703HIGHCVSS 8.1≥ 1.13 RTM, ≤ 24.2 RTM22024-11-30
CVE-2024-43703 [HIGH] CWE-416 CVE-2024-43703: Software installed and run as a non-privileged user may conduct improper GPU system calls to achieve
Software installed and run as a non-privileged user may conduct improper GPU system calls to achieve unauthorised reads and writes of physical memory from the GPU HW.
nvd
CVE-2024-43702HIGHCVSS 8.1≥ 1.13 RTM, ≤ 24.2 RTM12024-11-30
CVE-2024-43702 [HIGH] CWE-280 CVE-2024-43702: Software installed and run as a non-privileged user may conduct improper GPU system calls to allow u
Software installed and run as a non-privileged user may conduct improper GPU system calls to allow unprivileged access to arbitrary physical memory page.
nvd
CVE-2024-43704HIGHCVSS 8.4≥ 1.13 RTM, ≤ 24.2 RTM12024-11-18
CVE-2024-43704 [HIGH] CWE-668 CVE-2024-43704: Software installed and run as a non-privileged user may conduct improper GPU system calls to gain ac
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain access to the graphics buffers of a parent process.
nvd
CVE-2024-43701HIGHCVSS 7.8≥ 1.17, ≤ 24.2 RTM12024-10-14
CVE-2024-43701 [HIGH] CWE-362 CVE-2024-43701: Software installed and run as a non-privileged user may conduct GPU system calls to read and write f
Software installed and run as a non-privileged user may conduct GPU system calls to read and write freed physical memory from the GPU.
nvd
← Previous3 / 3