- Description
- Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Valhall GPU Firmware, Arm Ltd Arm 5th Gen GPU Architecture Firmware allows a local non-privileged user to make improper GPU processing operations to access a limited amount outside of buffer bounds. If the operations are carefully prepared, then this in turn could give them access to all system memory. This issue affects Valhall GPU Firmware: from r29p0 through r46p0; Arm 5th Gen GPU Architecture Firmware: from r41p0 through r46p0.
- Source
- arm-security@arm.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Secondary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:arm:5th_gen_gpu_architecture_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EFF42C72-F7CD-4EC2-BFF0-B945A60D0065",
"versionEndExcluding": "r47p0",
"versionStartIncluding": "r41p0"
},
{
"criteria": "cpe:2.3:o:arm:valhall_gpu_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A14DF3B5-CA8F-4CB8-A657-BC4C517B0EFA",
"versionEndExcluding": "r47p0",
"versionStartIncluding": "r29p0"
}
],
"operator": "OR"
}
]
}
]