Vulnerability Description
A local non-privileged user can make improper GPU memory processing operations. If the operations are carefully prepared, then they could be used to gain access to already freed memory.
CVSS Score
7.8
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Arm | Valhall Gpu Kernel Driver | >= r38p0, <= r44p0 |
Related Weaknesses (CWE)
References
- https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20VulnerabVendor Advisory
- https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20VulnerabVendor Advisory
FAQ
What is CVE-2023-3889?
CVE-2023-3889 is a vulnerability with a CVSS score of 7.8 (HIGH). A local non-privileged user can make improper GPU memory processing operations. If the operations are carefully prepared, then they could be used to gain access to already freed memory.
How severe is CVE-2023-3889?
CVE-2023-3889 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-3889?
Check the references section above for vendor advisories and patch information. Affected products include: Arm Valhall Gpu Kernel Driver.