CVE-2023-6241

HIGH

Arm Ltd GPU Kernel - Use After Free

Title source: llm

Description

Use After Free vulnerability in Arm Ltd Midgard GPU Kernel Driver, Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to exploit a software race condition to perform improper memory processing operations. If the system’s memory is carefully prepared by the user, then this in turn cause a use-after-free.This issue affects Midgard GPU Kernel Driver: from r13p0 through r32p0; Bifrost GPU Kernel Driver: from r11p0 through r25p0; Valhall GPU Kernel Driver: from r19p0 through r25p0, from r29p0 through r46p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r46p0.

Exploits (3)

nomisec WORKING POC 14 stars
by SmileTabLabo · poc
https://github.com/SmileTabLabo/CVE-2023-6241
nomisec WORKING POC 4 stars
by ilGobbo00 · poc
https://github.com/ilGobbo00/CVE-2023-6241-Pixel7_Adaptation
inthewild WORKING POC
poc
https://github.com/s1204it/cve-2023-6241

References (1)

Scores

CVSS v3 7.0
EPSS 0.1241
EPSS Percentile 93.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-416
Status published
Products (4)
arm/5th_gen_gpu_architecture_kernel_driver r41p0 - r47p0
arm/bifrost_gpu_kernel_driver r11p0 - r26p0
arm/midgard_gpu_kernel_driver r13p0 - r32p0
arm/valhall_gpu_kernel_driver r19p0 - r26p0
Published Mar 04, 2024
Tracked Since Feb 18, 2026