CVE-2023-26083

KEV
Published: Apr 06, 2023 Last Modified: Nov 03, 2025 EU-VD ID: EUVD-2023-29957 Aliases: GSD-2023-26083
ExploitDB:
Other exploit source:
Google Dorks:
LOW 3,3
Source: [email protected]
Attack Vector: local
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: unchanged
Confidentiality: low
Integrity: none
Availability: none

Description

AI Translation Available

Memory leak vulnerability in Mali GPU Kernel Driver in Midgard GPU Kernel Driver all versions from r6p0 - r32p0, Bifrost GPU Kernel Driver all versions from r0p0 - r42p0, Valhall GPU Kernel Driver all versions from r19p0 - r42p0, and Avalon GPU Kernel Driver all versions from r41p0 - r42p0 allows a non-privileged user to make valid GPU processing operations that expose sensitive kernel metadata.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0715
Percentile
0,9th
Updated

EPSS Score Trend (Last 90 Days)

401

Missing Release of Memory after Effective Lifetime

Draft
Abstraction: Variant Structure: Simple
Common Consequences
Security Scopes Affected:
Availability Other
Potential Impacts:
Dos: Crash, Exit, Or Restart Dos: Instability Dos: Resource Consumption (Cpu) Dos: Resource Consumption (Memory) Reduce Performance
Applicable Platforms
Languages: C, C++, Not Language-Specific
Likelihood of Exploit: Medium
View CWE Details
Application

Valhall Gpu Kernel Driver by Arm

Product Information
Vendor Arm
Product Valhall Gpu Kernel Driver
Version Range Affected
From r19p0 (inclusive)
To r43p0 (exclusive)
cpe:2.3:a:arm:valhall_gpu_kernel_driver:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

5Th Gen Gpu Architecture Kernel Driver by Arm

Product Information
Vendor Arm
Product 5Th Gen Gpu Architecture Kernel Driver
Version Range Affected
From r41p0 (inclusive)
To r43p0 (exclusive)
cpe:2.3:a:arm:5th_gen_gpu_architecture_kernel_driver:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Midgard Gpu Kernel Driver by Arm

Product Information
Vendor Arm
Product Midgard Gpu Kernel Driver
Version Range Affected
From r6p0 (inclusive)
To r32p0 (inclusive)
cpe:2.3:a:arm:midgard_gpu_kernel_driver:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Bifrost Gpu Kernel Driver by Arm

Product Information
Vendor Arm
Product Bifrost Gpu Kernel Driver
Version Range Affected
From r0p0 (inclusive)
To r43p0 (exclusive)
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://www.cisa.gov/known-exploited-vulnerabilities-catalo…
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023…
https://developer.arm.com/Arm%20Security%20Center/Mali%20GP…
https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnera…
https://www.cybersecurity-help.cz/vdb/SB2023033049
https://www.cybersecurity-help.cz/vdb/SB2023033049
https://www.cybersecurity-help.cz/vulnerabilities/74210/
https://www.cybersecurity-help.cz/vulnerabilities/74210/
https://developer.arm.com/Arm%20Security%20Center/Mali%20GP…
https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnera…
https://www.cybersecurity-help.cz/vdb/SB2023033049
https://www.cybersecurity-help.cz/vdb/SB2023033049
https://www.cybersecurity-help.cz/vulnerabilities/74210/
https://www.cybersecurity-help.cz/vulnerabilities/74210/