Vulnerability Description
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a non-privileged user process to make valid GPU processing operations, including via WebGL or WebGPU, to access a limited amount outside of buffer bounds.This issue affects Bifrost GPU Userspace Driver: from r0p0 through r49p2, from r50p0 through r51p0; Valhall GPU Userspace Driver: from r19p0 through r49p2, from r50p0 through r53p0; Arm 5th Gen GPU Architecture Userspace Driver: from r41p0 through r49p2, from r50p0 through r53p0.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Arm | 5Th Gen Gpu Architecture Userspace Driver | >= r41p0, < r49p3 |
| Arm | Bifrost Gpu Userspace Driver | >= r0p0, < r49p3 |
| Arm | Valhall Gpu Userspace Driver | >= r19p0, < r49p3 |
Related Weaknesses (CWE)
References
- https://developer.arm.com/documentation/110435/latest/Vendor Advisory
FAQ
What is CVE-2025-0050?
CVE-2025-0050 is a vulnerability with a CVSS score of 5.9 (MEDIUM). Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architectur...
How severe is CVE-2025-0050?
CVE-2025-0050 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-0050?
Check the references section above for vendor advisories and patch information. Affected products include: Arm 5Th Gen Gpu Architecture Userspace Driver, Arm Bifrost Gpu Userspace Driver, Arm Valhall Gpu Userspace Driver.