Improper GPU System Call Vulnerability in Imagination Technologies Kernel Driver
CVE-2026-22164

7.5HIGH

Key Information:

Vendor: Imagination Technologies
Status: Graphics Ddk
Vendor: CVE Published:; 8 June 2026

🔔 Create Imagination Technologies Vulnerability Alert

What is CVE-2026-22164?

A vulnerability exists within the Imagination Technologies GPU driver that allows software running as a non-privileged user to execute improper system calls. These calls can manipulate GPU resources in a way that leads to the corruption of kernel heap memory. By crafting specific parameters and exploiting the affected interface, attackers can compromise the integrity of the system, highlighting the importance of securing the driver to prevent unauthorized access and potential system instability.

Affected Version(s)

Graphics DDK Linux 24.2 RTM

Graphics DDK Linux 25.1 RTM <= 25.3 RTM

Graphics DDK Linux 26.1 RTM

References

https://www.imaginationtech.com/gpu-driver-vulnerabilities/

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 8, 2026
Vulnerability Reserved
Jan 6, 2026

CVE-2026-22164 Data

JSON