CVE-2023-5249

CVSS 3.1 Score 7.0 of 10 (high)

Details

Published Feb 5, 2024

Updated: Feb 13, 2024

CWE ID 416

Summary

CVE-2023-5249 is a Use After Free vulnerability found in Arm Ltd Bifrost GPU Kernel Driver and Arm Ltd Valhall GPU Kernel Driver. This vulnerability allows a local non-privileged user to manipulate memory operations and exploit a software race condition, potentially leading to a use-after-free scenario. The affected versions include Bifrost GPU Kernel Driver from r35p0 through r40p0 and Valhall GPU Kernel Driver from r35p0 through r40p0. The vulnerability has a base severity rating of HIGH with a CVSS score of 7.0, indicating the potential for significant impact on confidentiality, integrity, and availability. It requires low privileges and does not require user interaction, posing a risk to organizations if exploited. No remediation information or analysis description is provided in the source text.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database