GPU System Calls Vulnerability Allows Unprivileged Access to Arbitrary Memory
CVE-2024-43702

Currently unrated

Key Information:

Vendor: NVIDIA
Vendor: CVE Published:; 30 November 2024

Summary

A vulnerability in the GPU drivers from Imagination Technologies allows software running as a non-privileged user to perform improper system calls. This flaw can lead to unprivileged access to arbitrary physical memory pages, posing a potential risk for data exposure and exploitation. Users running affected driver versions are advised to assess their environments and implement any available updates to mitigate this risk.

References

https://www.imaginationtech.com/gpu-driver-vulnerabilities/

Timeline

Vulnerability published
Nov 30, 2024