CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2021-28664

Known Exploited (CISA KEV)HIGH
8.8
CVSS Severity Score
EPSS Score59.9630%
EPSS Percentile93.61th
Published2021年5月10日
Last Modified2025年11月3日

Vulnerability Description

The Arm Mali GPU kernel driver allows privilege escalation or a denial of service (memory corruption) because an unprivileged user can achieve read/write access to read-only pages. This affects Bifrost r0p0 through r29p0 before r30p0, Valhall r19p0 through r29p0 before r30p0, and Midgard r8p0 through r30p0 before r31p0.

Affected Platforms (CPE)

📦
Arm

Bifrost Gpu Kernel Driver

>= r0p0 and < r29p0
📦
Arm

Midgard Gpu Kernel Driver

>= r8p0 and < r31p0
📦
Arm

Valhall Gpu Kernel Driver

>= r19p0 and < r29p0

References & Advisories

🔗 https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
🔗 https://developer.arm.com/support/arm-security-updates
🔗 https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver
🔗 https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
🔗 https://developer.arm.com/support/arm-security-updates
🔗 https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver
🔗 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-28664

相關漏洞威脅

CVE-2021-286638.8

The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled,...

CVE-2021-292568.8

. The Arm Mali GPU kernel driver allows an unprivileged user to achieve access to freed memory, leading to information disclosure ...

CVE-2021-448287.8

Arm Mali GPU Kernel Driver (Midgard r26p0 through r30p0, Bifrost r0p0 through r34p0, and Valhall r19p0 through r34p0) allows a non...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...