Lucene search

[email protected]NVD:CVE-2022-46396

HistoryApr 11, 2023 - 9:15 p.m.

CVE-2022-46396

2023-04-1121:15:15

CWE-119

[email protected]

web.nvd.nist.gov

cve-2022-46396

arm mali kernel driver

gpu memory access

valhall

avalon

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

4.1

Confidence

High

EPSS

0.001

Percentile

20.0%

JSON

An issue was discovered in the Arm Mali Kernel Driver. A non-privileged user can make improper GPU memory processing operations to access a limited amount outside of buffer bounds. This affects Valhall r29p0 through r41p0 before r42p0 and Avalon r41p0 before r42p0.

Affected configurations

Nvd

Node

armavalon_gpu_kernel_driverMatchr41p0

armvalhall_gpu_kernel_driverRanger29p0–r41p0

VendorProductVersionCPE
armavalon_gpu_kernel_driverr41p0cpe:2.3:a:arm:avalon_gpu_kernel_driver:r41p0:*:*:*:*:*:*:*
armvalhall_gpu_kernel_driver*cpe:2.3:a:arm:valhall_gpu_kernel_driver:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
arm	avalon_gpu_kernel_driver	r41p0	cpe:2.3:a:arm:avalon_gpu_kernel_driver:r41p0:::::::*
arm	valhall_gpu_kernel_driver	*	cpe:2.3:a:arm:valhall_gpu_kernel_driver::::::::

References

developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

4.1

Confidence

High

EPSS

0.001

Percentile

20.0%

JSON

Related for NVD:CVE-2022-46396

prion1 cvelist1 nessus1 cve1