High Severity Vulnerability in Imagination Technologies PowerVR-GPU Before 2024-09-05

CVE-2024-31336

Currently unrated 🤨

Key Information

Vendor: Google
Status: Android
Vendor: CVE Published:; 11 September 2024

Summary

In PVRSRVBridgeRGXKickTA3D2 of server_rgxta3d_bridge.c, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

Affected Version(s)

Android = Android SoC

Timeline

Vulnerability published.
Sep 11, 2024
Vulnerability Reserved.
Mar 29, 2024

Collectors

NVD DatabaseMitre Database