Lucene search

[email protected]CVE-2022-46396

HistoryApr 11, 2023 - 9:15 p.m.

CVE-2022-46396

2023-04-1121:15:15

CWE-119

[email protected]

web.nvd.nist.gov

arm mali

kernel driver

cve-2022-46396

gpu

memory processing

security vulnerability

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

4.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.2%

JSON

An issue was discovered in the Arm Mali Kernel Driver. A non-privileged user can make improper GPU memory processing operations to access a limited amount outside of buffer bounds. This affects Valhall r29p0 through r41p0 before r42p0 and Avalon r41p0 before r42p0.

Affected configurations

NVD

Node

armavalon_gpu_kernel_driverMatchr41p0

armvalhall_gpu_kernel_driverRanger29p0–r41p0

CPENameOperatorVersion
arm:avalon_gpu_kernel_driverarm avalon gpu kernel drivereqr41p0
arm:valhall_gpu_kernel_driverarm valhall gpu kernel driverler41p0

CPE	Name	Operator	Version
arm:avalon_gpu_kernel_driver	arm avalon gpu kernel driver	eq	r41p0
arm:valhall_gpu_kernel_driver	arm valhall gpu kernel driver	le	r41p0

References

developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

4.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.2%

JSON

Related for CVE-2022-46396

nvd1 nessus1 cvelist1 prion1