CyberSec.Space Logo
Back to CVE Browser

CVE-2021-39815

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0480%
EPSS Percentile28.30th
PublishedAug 24, 2022
Last ModifiedNov 21, 2024

Vulnerability Description

The PowerVR GPU driver allows unprivileged apps to allocated pinned memory, unpin it (which makes it available to be freed), and continue using the page in GPU calls. No privileges required and this results in kernel memory corruption.Product: AndroidVersions: Android SoCAndroid ID: A-232440670

Affected Platforms (CPE)

💻
Google

Android

All versions

References & Advisories

🔗 https://source.android.com/security/bulletin/2022-08-01
🔗 https://source.android.com/security/bulletin/2022-08-01

Related Vulnerabilities

CVE-2012-525410.0

Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 ...

CVE-2012-525510.0

Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 ...

CVE-2019-1106310.0

A broken access control vulnerability in SmartHome app (Android versions up to 3.0.42_190515, ios versions up to 2.0.22) allows an...

CVE-2012-525610.0

Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11....