Impact
The flaw lies in the ivpu driver, where it fails to validate the indices received from firmware before accessing the kernel’s log buffer. This weakness is an instance of CWE‑805, Buffer Access with Incorrect Boundary Checks. When firmware supplies indices that exceed the buffer’s allocated size, the kernel would perform an out‑of‑bounds read or write, potentially leading to memory corruption or leakage of data adjacent to the buffer. The vulnerability description does not mention arbitrary code execution or privilege escalation; based on the description, it is inferred that the risk is mainly data integrity or confidentiality.
Affected Systems
All Linux kernel releases that include the ivpu firmware interface and do not contain the bounds‑check commit 535da9ad8420c3b686a642403d4147ff220255fd are affected. Based on the commit reference, it is inferred that kernels prior to that commit are vulnerable, while downstream kernels that incorporate the patch are protected.
Risk and Exploitability
The CVSS score of 7.1 indicates high severity, and the EPSS score of less than 1% signals a very low probability of exploitation. The vulnerability is not listed in the CISA KEV catalog. Exploitation would normally require the attacker to control the firmware supplied to the ivpu subsystem; based on the description, this capability is typically restricted to privileged users or firmware developers. No public exploit or remote attack vector is documented, so the likelihood of an active attack against unpatched systems remains low.
OpenCVE Enrichment