Write Access Vulnerability in Arm Mali GPU Kernel Driver
CVE-2022-22706

7.8HIGH

Key Information:

Vendor

Arm
Status
Bifrost
Valhall
Midgard
Vendor
CVE Published:
3 March 2022

Badges

๐Ÿ‘พ Exploit Exists๐Ÿฆ… CISA Reported

What is CVE-2022-22706?

The Arm Mali GPU Kernel Driver has a vulnerability that enables non-privileged users to gain unauthorized write access to read-only memory pages. This poses a significant risk to the integrity of the system and affects various versions across the Midgard, Bifrost, and Valhall architectures. System administrators should review and patch affected systems to mitigate potential exploitation.

CISA has reported CVE-2022-22706

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2022-22706 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace

The CISA's recommendation is: Apply updates per vendor instructions.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://developer.arm.com/support/arm-security-updates
x_refsource_MISC
https://developer.arm.com/support/arm-security-updates/ma...
x_refsource_MISC

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • ๐Ÿ‘พ

    Exploit known to exist

  • ๐Ÿฆ…

    CISA Reported

  • Vulnerability published

  • Vulnerability Reserved

JSON
.