CVE-2025-0478 in Imagination Graphics DDKinfo

Summary

Software installed and run as a non-privileged user may conduct improper GPU system calls to issue reads and writes to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kernel and drivers running on the platform, altering their behaviour.

Responsible

imaginationtech

Reservation

01/15/2025

Disclosure

03/24/2025

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
300738	Imagination Graphics DDK GPU Driver insufficient permissions or privileges	280	Not defined	Official fix	CVE-2025-0478

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Interested in the pricing of exploits?

See the underground prices here!