Lucene search
CISACISA-KEV-CVE-2024-4610HistoryJun 12, 2024 - 12:00 a.m.
Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
2024-06-1200:00:00
CISA
www.cisa.gov
7
arm
mali
gpu
kernel
driver
use-after-free
vulnerability
bifrost
valhall
local user
privileged
memory processing
operations
freed memory
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
Low
EPSS
0.159
Percentile
96.1%
Arm Bifrost and Valhall GPU kernel drivers contain a use-after-free vulnerability that allows a local, non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.
Related
cve
cve
CVE-2024-4610
2024-06-07 12:15:09
redhatcve
redhatcve
CVE-2024-4610
2024-06-13 11:13:50
cvelist
cvelist
attackerkb
attackerkb
CVE-2024-4610
2024-06-07 00:00:00
vulnrichment
vulnrichment
nvd
nvd
CVE-2024-4610
2024-06-07 12:15:09
thn
thn
Arm Warns of Actively Exploited Zero-Day Vulnerability in Mali GPU Drivers
2024-06-11 06:37:00
Google Warns of Pixel Firmware Security Flaw Exploited as Zero-Day
2024-06-13 07:08:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
Low
EPSS
0.159
Percentile
96.1%
Related for CISA-KEV-CVE-2024-4610