Logic Errors in GPU Firmware for Imagination Technologies' Products
CVE-2026-34193

Currently unrated

Key Information:

Vendor

Imagination Technologies

Status
Graphics Ddk
Vendor
CVE Published:
1 June 2026

What is CVE-2026-34193?

A logic error in the address translation process allows a compromised Host Kernel operating within a Guest/Host VM to issue improper commands to the GPU Firmware. This flaw may result in arbitrary writes to firmware memory, potentially compromising the security and integrity of the hardware. Such vulnerabilities in GPU firmware can lead to significant risks, including unauthorized access and manipulation of sensitive data.

Affected Version(s)

Graphics DDK Linux 1.18 RTM

Graphics DDK Linux 23.2 RTM

Graphics DDK Linux 24.2 RTM

References

https://www.imaginationtech.com/gpu-driver-vulnerabilities/

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.