CVE-2023-4211
Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
CVSS
—
No CVSS
EPSS
1.4%
p69
KEV
YES
Oct 3, 2023
Exploit Today
71
0-100
Published: — · Last modified: —
Product
Arm / Mali GPU Kernel Driver
Vulnerability
Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
Added to KEV
Oct 3, 2023
Remediate by
Oct 24, 2023
Known ransomware use
No
Summary description
Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that allows a local, non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.
Required action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notes
https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities; https://nvd.nist.gov/vuln/detail/CVE-2023-4211