Kernel Heap Data Vulnerability in Imagination Technologies' GPU Driver
CVE-2025-46710

5.7MEDIUM

Key Information:

Vendor: Imagination Technologies
Status: Graphics Ddk
Vendor: CVE Published:; 16 June 2025

🔔 Create Imagination Technologies Vulnerability Alert

What is CVE-2025-46710?

This vulnerability involves potential kernel exceptions that can occur due to improper handling of kernel heap data. When the memory space is accessed after it has been freed, this could lead to unpredictable behavior or exploitation opportunities, posing significant risks to systems utilizing the affected GPU drivers developed by Imagination Technologies.

Affected Version(s)

Graphics DDK Linux 1.15 RTM <= 24.2 RTM2

Graphics DDK Linux 24.3 RTM

References

https://www.imaginationtech.com/gpu-driver-vulnerabilities/

CVSS V3.1

Score:

5.7

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 16, 2025
Vulnerability Reserved
Apr 28, 2025

JSON