Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2022-38181
HistoryOct 25, 2022 - 7:15 p.m.

CVE-2022-38181

2022-10-2519:15:11
CWE-416
[email protected]
web.nvd.nist.gov
1
arm mali gpu
driver
memory operations
unprivileged access

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.687 Medium

EPSS

Percentile

98.0%

JSON

The Arm Mali GPU kernel driver allows unprivileged users to access freed memory because GPU memory operations are mishandled. This affects Bifrost r0p0 through r38p1, and r39p0; Valhall r19p0 through r38p1, and r39p0; and Midgard r4p0 through r32p0.

Affected configurations

NVD
Node
armbifrost_gpu_kernel_driverRanger0p0r38p1
OR
armbifrost_gpu_kernel_driverMatchr39p0
OR
armmidgard_gpu_kernel_driverRanger4p0r31p0
OR
armvalhall_gpu_kernel_driverRanger19p0r38p1
OR
armvalhall_gpu_kernel_driverMatchr39p0

Related

nessus 1
cisa_kev 1
prion 1
cvelist 1
attackerkb 1
cve 1
github 3
malwarebytes 1
thn 2
nessus
nessus
ARM Mali GPU Kernel Driver < r38p2 / < r40p0 Use After Free (CVE-2022-38181)
2023-07-11 00:00:00
cisa_kev
cisa_kev
Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
2023-03-30 00:00:00
prion
prion
Design/Logic Flaw
2022-10-25 19:15:00
cvelist
cvelist
CVE-2022-38181
2022-10-25 00:00:00
attackerkb
attackerkb
CVE-2022-38181
2022-10-25 00:00:00
cve
cve
CVE-2022-38181
2022-10-25 19:15:11
github
github
Pwning Pixel 6 with a leftover patch
2023-04-06 16:00:48
Getting RCE in Chrome with incorrect side effect in the JIT compiler
2023-09-26 15:00:54
Pwning the all Google phone with a non-Google bug
2023-01-23 15:05:19
malwarebytes
malwarebytes
Update Android now! Google patches three important vulnerabilities
2023-04-05 05:00:00
thn
thn
Arm Warns of Actively Exploited Zero-Day Vulnerability in Mali GPU Drivers
2024-06-11 06:37:00
Spyware Vendors Caught Exploiting Zero-Day Vulnerabilities on Android and iOS Devices
2023-03-29 13:52:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.687 Medium

EPSS

Percentile

98.0%

JSON
Related for NVD:CVE-2022-38181
nessus1cisa_kev1prion1cvelist1attackerkb1cve1github3malwarebytes1thn2