The vmwgfx driver in the Linux kernel contains a bug that results in a null pointer dereference when a 3D KMS framebuffer is created on hardware version 10, which does not provide GB surfaces or a backing buffer. The kernel crash triggers a black screen and disrupts graphics operations, effectively denying service to applications using 3D graphics. This flaw is identified as CWE‑476 and does not provide a path to arbitrary code execution, but it can be exploited locally by any process that can request the vulnerable framebuffer configuration.

All Linux kernel deployments that include the vmwgfx DRM driver, notably kernel 6.16 and all 6.19 release candidate series, are affected. The vulnerability applies to environments where the hardware presents a version 10 identifier and expects 3D KMS support.

With a CVSS score of 5.5, the risk is considered medium, while the EPSS score of less than 1 % indicates a very low probability of current exploitation. The vulnerability is not listed in the CISA KEV catalog, further supporting the assessment that widespread attacks are unlikely. Attackers would need local access or the ability to influence framebuffer creation on HW version 10 hardware to trigger the crash; remote exploitation or privilege escalation is not possible based on the provided data.