Memory Access Vulnerability in Arm Mali GPU Driver
CVE-2023-28469

5.5MEDIUM

Key Information:

Vendor: Arm
Status: Avalon Gpu Kernel Driver; Valhall Gpu Kernel Driver
Vendor: CVE Published:; 2 June 2023

What is CVE-2023-28469?

A security issue in the Arm Mali GPU Kernel Driver allows a non-privileged user to perform improper GPU processing operations, which can lead to unauthorized access to already freed memory. This vulnerability affects specific versions of the Valhall architecture and Arm's GPU Architecture Gen5, highlighting the need for users to upgrade to the latest versions to mitigate potential risks.

References

https://developer.arm.com/Arm%20Security%20Center/Mali%20...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 2, 2023
Vulnerability Reserved
Mar 15, 2023