Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-28147
HistoryJun 02, 2023 - 12:15 a.m.

CVE-2023-28147

2023-06-0200:15:09
[email protected]
web.nvd.nist.gov
4
arm mali gpu
kernel driver
memory access

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

20.0%

JSON

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r29p0 through r32p0, Bifrost r17p0 through r42p0 before r43p0, Valhall r19p0 through r42p0 before r43p0, and Arm’s GPU Architecture Gen5 r41p0 through r42p0 before r43p0.

Affected configurations

Nvd
Node
armavalon_gpu_kernel_driverRanger41p0r43p0
OR
armbifrost_gpu_kernel_driverRanger17p0r43p0
OR
armmidgard_gpu_kernel_driverRanger29p0r32p0
OR
armvalhall_gpu_kernel_driverRanger19p0r43p0
VendorProductVersionCPE
armavalon_gpu_kernel_driver*cpe:2.3:a:arm:avalon_gpu_kernel_driver:*:*:*:*:*:*:*:*
armbifrost_gpu_kernel_driver*cpe:2.3:a:arm:bifrost_gpu_kernel_driver:*:*:*:*:*:*:*:*
armmidgard_gpu_kernel_driver*cpe:2.3:a:arm:midgard_gpu_kernel_driver:*:*:*:*:*:*:*:*
armvalhall_gpu_kernel_driver*cpe:2.3:a:arm:valhall_gpu_kernel_driver:*:*:*:*:*:*:*:*

Related

nessus 1
prion 1
cvelist 1
cve 1
nessus
nessus
ARM Mali GPU Kernel Driver < r43p0 Use After Free (CVE-2023-28147)
2023-07-11 00:00:00
prion
prion
Design/Logic Flaw
2023-06-02 00:15:00
cvelist
cvelist
CVE-2023-28147
2023-06-01 00:00:00
cve
cve
CVE-2023-28147
2023-06-02 00:15:09

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

20.0%

JSON
Related for NVD:CVE-2023-28147
nessus1prion1cvelist1cve1