CVE-2021-28663
CVE-2021-28663
Vexday Risk Score
76High priority
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
CVSS 8.8EPSS 12.1%KEV simPoC públicaNuclei —Metasploit —Patch —
Lifecycle
10 May 2021Published on NVD
01 Sep 2021Public PoC
03 Nov 2021Active exploitation (CISA KEV)
Recommendation: Patch as soon as possible — active exploitation confirmed.
In short
The Arm Mali GPU driver has a flaw where it incorrectly manages memory, allowing freed memory to be used again. This can let attackers gain higher system privileges or read sensitive data on affected devices.
Technical detail
A use-after-free vulnerability in GPU memory operations allows privilege escalation or information disclosure when freed memory is accessed. The vulnerability affects Bifrost (r0p0–r28p0), Valhall (r19p0–r28p0), and Midgard (r4p0–r30p0) GPU kernel drivers; exploitation requires local access to trigger GPU memory operations.
Summary generated and translated by AI from the official description.
The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 1
githubgithub.com/lntrx/CVE-2021-28663★ 125⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →