Improper GPU System Call Vulnerability in Imagination Technologies
CVE-2025-46711

5.5MEDIUM

Key Information:

Vendor

Imagination Technologies

Status
Graphics Ddk
Vendor
CVE Published:
22 September 2025

What is CVE-2025-46711?

A vulnerability exists in the GPU driver software from Imagination Technologies, allowing non-privileged users to perform improper GPU system calls. This flaw may lead to NULL pointer dereference kernel exceptions, which could disrupt system stability and performance. It is crucial for users of affected driver versions to review their configurations and apply necessary updates to mitigate potential risks.

Affected Version(s)

Graphics DDK Linux 1.17 RTM

Graphics DDK Linux 1.18 RTM

Graphics DDK Linux 23.2 RTM <= 25.1 RTM1

References

https://www.imaginationtech.com/gpu-driver-vulnerabilities/

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.