CVE-2025-58411

High CVSS: 8.8

Software installed and run as a non-privileged user may conduct improper GPU system calls to cause mismanagement of resources reference counting creating a potential use after free scenario.

Improper resource management and reference counting on an internal resource caused scenario where potential write use after free was present.

Vendor

Imaginationtech

Product

Ddk

CWE

CWE-416

Yayın Tarihi

2026-01-13 17:15:57

Güncelleme

2026-01-30 18:38:40

Source Identifier

367425dc-4d06-4041-9650-c2dc6aaa27ce

KEV Date Added

Kategoriler

CWE-416 Ddk HIGH Imaginationtech 2026

Referanslar

https://www.imaginationtech.com/gpu-driver-vulnerabilities/

Benzer Kayıtlar

Medium

CVE-2026-21736

Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permission to re…

Critical

CVE-2025-13952

A web page that contains unusual GPU shader code is loaded from the Internet into the GPU compiler process triggers a wr…

High

CVE-2025-10865

Software installed and run as a non-privileged user may conduct improper GPU system calls to cause mismanagement of refe…

Low

CVE-2025-58409

Software installed and run as a non-privileged user may conduct improper GPU system calls to subvert GPU HW to write to…

Critical

CVE-2025-25176

Intermediate register values of secure workloads can be exfiltrated in workloads scheduled from applications running in…

Medium

CVE-2025-58408

Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger reads of stale data…