CVE-2023-4295

HIGH

ARM Mali GPU Kernel Driver r41p0 through r43p0 and Valhall GPU Kernel Driver r29p0 through r42p0 - Use-After-Free

Title source: llm

A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory.

Core 2

Core References

Third Party Advisory

Vendor Advisory

CVSS v3 7.8

EPSS 0.0020

EPSS Percentile 41.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

CWE

CWE-190 CWE-416

Status published

Products (2)

arm/mali_gpu_kernel_driver r41p0 - r43p0

arm/valhall_gpu_kernel_driver r29p0 - r42p0

Published Nov 07, 2023

Tracked Since Feb 18, 2026