CVE-2021-28663
Arm Mali Graphics Processing Unit (GPU) Use-After-Free Vulnerability
CVSS
—
No CVSS
EPSS
12.1%
p96
KEV
YES
Nov 3, 2021
Exploit Today
79
0-100
Published: — · Last modified: —
12.1%EPSS · 30 days12.1%
2026-06-302026-07-16
Product
Arm / Mali Graphics Processing Unit (GPU)
Vulnerability
Arm Mali Graphics Processing Unit (GPU) Use-After-Free Vulnerability
Added to KEV
Nov 3, 2021
Remediate by
Nov 17, 2021
Known ransomware use
No
Summary description
Arm Mali Graphics Processing Unit (GPU) kernel driver contains a use-after-free vulnerability that may allow a non-privileged user to make improper operations on GPU memory to gain root privilege, and/or disclose information.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2021-28663
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2022-38181—95.8%
KEV—79Arm Mali GPU Kernel Driver Use-After-Free Vulnerability—CVE-2021-28664—91.8%
KEV—78Arm Mali Graphics Processing Unit (GPU) Unspecified Vulnerability—CVE-2021-29256—85.9%
KEV—76Arm Mali GPU Kernel Driver Use-After-Free Vulnerability—CVE-2023-26083—70.0%
KEV—71Arm Mali GPU Kernel Driver Information Disclosure Vulnerability—CVE-2022-22706—65.4%
KEV—70Arm Mali GPU Kernel Driver Unspecified Vulnerability—