Description
Software installed and run as a non-privileged user may conduct improper GPU system calls to cause mismanagement of resources reference counting creating a potential use after free scenario. Improper resource management and reference counting on an internal resource caused scenario where potential write use after free was present.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High
Affected products
- Imagination Technologies / Graphics DDK1.15 RTM – 1.15 RTM
- Imagination Technologies / Graphics DDK1.17 RTM – 1.17 RTM
- Imagination Technologies / Graphics DDK1.18 RTM – 1.18 RTM
- Imagination Technologies / Graphics DDK23.2 RTM – 25.2 RTM
- Imagination Technologies / Graphics DDK25.3 RTM – 25.3 RTM