Description
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permission to read-only wrapped user-mode memory and files.



This is caused by improper handling of GPU memory reservation protections.
Published: 2026-04-17
Score: 7.3 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The flaw in the Imagination Technologies Graphics DDK occurs in RGXDerivePTEProt8, where incorrect flag validation fails to enforce write restrictions on GPU memory reservation. This allows a process running as a non‑privileged user to issue GPU system calls that obtain write permission for memory that is normally read‑only, such as shared libraries (e.g., libc.so). The lack of proper validation and authorization lets the attacker overwrite protected portions of user‑mode memory and files, potentially compromising the integrity of the process and the operating system.

Affected Systems

Imagination Technologies Graphics DDK is the affected component. No specific version numbers are provided in the advisory, so any installation of the Graphics DDK that includes the RGXDerivePTEProt8 function could be impacted. Administrators should contains this code or if a later release includes a fix.

Risk and Exploitability

The CVSS score of 7.3 indicates a high severity level, while the EPSS score of less than 1% suggests a low probability of exploitation at the time of this analysis. The vulnerability is not listed in the CISA KEV catalog. The description reveals that a non‑privileged user can cause memory corruption by gaining write access to read‑only regions; this represents a local privilege escalation scenario that can disrupt process integrity or lead to code execution. Based on the nature of GPU driver deployment, it is inferred that the flaw could be exploitable on operating systems that support Imagination GPUs, such as Linux or Android, although explicit platform support is not stated.

Generated by OpenCVE AI on June 26, 2026 at 18:25 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Review the Imagination Technologies GPU driver vulnerability page at https://www.imaginationtech.com/gpu-driver-vulnerabilities/ for any advisories or patches.
  • Apply any updated Graphics DDK releases provided by Imagination Technologies that address this issue.
  • If no patch available, restrict GPU driver usage to trusted processes or limit GPU access to non‑privileged contexts as a temporary mitigative measure.

Generated by OpenCVE AI on June 26, 2026 at 18:25 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 26 Jun 2026 16:00:00 +0000

Type Values Removed Values Added
Description Vulnerability in Imagination Technologies Graphics DDK on Linux, Android --  RESERVED Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permission to read-only wrapped user-mode memory and files. This is caused by improper handling of GPU memory reservation protections.
Title RESERVED GPU DDK - Incorrect flags validation in RGXDerivePTEProt8 can allow GPU to overwrite read-only shared memory (e.g. libc.so)
Weaknesses CWE-280

Sun, 10 May 2026 20:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20

Thu, 23 Apr 2026 12:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-280

Thu, 23 Apr 2026 11:30:00 +0000

Type Values Removed Values Added
Description Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permission to read-only wrapped user-mode memory and files. This is caused by improper handling of GPU memory reservation protections. Vulnerability in Imagination Technologies Graphics DDK on Linux, Android --  RESERVED
Title GPU DDK - Incorrect flags validation in RGXDerivePTEProt8 can allow GPU to overwrite read-only shared memory (e.g. libc.so) RESERVED

Fri, 17 Apr 2026 21:00:00 +0000

Type Values Removed Values Added
First Time appeared Imaginationtech
Imaginationtech graphics Ddk
Vendors & Products Imaginationtech
Imaginationtech graphics Ddk

Fri, 17 Apr 2026 18:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 7.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 17 Apr 2026 16:30:00 +0000

Type Values Removed Values Added
Description Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permission to read-only wrapped user-mode memory and files. This is caused by improper handling of GPU memory reservation protections.
Title GPU DDK - Incorrect flags validation in RGXDerivePTEProt8 can allow GPU to overwrite read-only shared memory (e.g. libc.so)
Weaknesses CWE-280
References

Subscriptions

Imaginationtech Graphics Ddk
cve-icon MITRE

Status: PUBLISHED

Assigner: imaginationtech

Published:

Updated: 2026-06-26T15:07:33.429Z

Reserved: 2026-01-05T11:57:27.258Z

Link: CVE-2026-21733

cve-icon Vulnrichment

Updated: 2026-04-17T17:19:31.532Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-04-17T17:16:35.220

Modified: 2026-06-17T10:18:59.400

Link: CVE-2026-21733

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-26T18:30:05Z

Weaknesses
  • CWE-20

    Improper Input Validation

  • CWE-280

    Improper Handling of Insufficient Permissions or Privileges