Description
A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger an out-of-bound write in the GPU user-space driver, leading to memory corruption and possible browser/GPU process crash.



The software computes a required memory size from untrusted input, but integer overflow can produce a value smaller than needed. Subsequent write operations may then occur past the intended memory boundary, corrupting adjacent memory and causing process instability or termination.
Published: 2026-06-12
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an out‑of‑bounds write in the Imagination Technologies Graphics DDK, triggered by WebGPU data supplied by a web page. The driver calculates the required memory buffer size from untrusted input, and an integer overflow can cause the size to be smaller than required. A subsequent memory write then extends past the allocated buffer, corrupting adjacent memory. This corruption can result in a crash of the GPU WebGL/GLES rendering process and could expose sensitive data or allow further exploitation within the browser environment. The identified weakness is CWE‑787: Out‑of‑Bounds Write.

Affected Systems

Imagination Technologies Graphics DDK products used in web browsers that enable WebGPU. Specific affected versions are not disclosed in the available data.

Risk and Exploitability

The CVSS score is not provided, but the lack of an EPSS score and absence from CISA KEV suggest that while the vulnerability could be exploited locally within a browser session, it is not currently known to be widely leveraged in the wild. Attackers would need to supply a crafted WebGPU payload to a target web page to trigger the overflow, making the attack vector client‑side or local.

Generated by OpenCVE AI on June 12, 2026 at 23:28 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Check for and install the latest Imagination Technologies GPU driver update or patch that addresses the memory size calculation issue.
  • If no patch is available, disable WebGPU features in the browser or use browser extensions that enforce stricter content security policies to block untrusted WebGPU content.
  • Configure the system to restrict GPU process privileges and isolate it from other critical processes so that a crash does not lead to broader system compromise.

Generated by OpenCVE AI on June 12, 2026 at 23:28 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 12 Jun 2026 22:15:00 +0000

Type Values Removed Values Added
Description A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger an out-of-bound write in the GPU user-space driver, leading to memory corruption and possible browser/GPU process crash. The software computes a required memory size from untrusted input, but integer overflow can produce a value smaller than needed. Subsequent write operations may then occur past the intended memory boundary, corrupting adjacent memory and causing process instability or termination.
Title GPU DDK - OOB Write in CalculateNPOTTwiddleSparsePageMap3D
Weaknesses CWE-787
References

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: imaginationtech

Published:

Updated: 2026-06-12T21:53:00.776Z

Reserved: 2026-04-17T16:26:03.731Z

Link: CVE-2026-41157

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-12T22:16:50.583

Modified: 2026-06-12T22:16:50.583

Link: CVE-2026-41157

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-12T23:30:08Z

Weaknesses