CVE-2026-22163

{"id": "CVE-2026-22163", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 1.1}]}, "published": "2026-03-20T23:16:42.640", "references": [{"url": "https://www.imaginationtech.com/gpu-driver-vulnerabilities/", "tags": ["Vendor Advisory"], "source": "367425dc-4d06-4041-9650-c2dc6aaa27ce"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "367425dc-4d06-4041-9650-c2dc6aaa27ce", "description": [{"lang": "en", "value": "CWE-820"}]}], "descriptions": [{"lang": "en", "value": "Requires malware code to misuse the DDK kernel module IOCTL interface.\n\nSuch code can use the interface in an unsupported way that allows subversion of the GPU to perform writes to arbitrary physical memory pages.\n\nThe product utilises a shared resource in a concurrent manner but does not attempt to synchronise access to the resource."}, {"lang": "es", "value": "Requiere que el c\u00f3digo de malware haga un uso indebido de la interfaz IOCTL del m\u00f3dulo kernel DDK.\n\nDicho c\u00f3digo puede usar la interfaz de una manera no soportada que permite la subversi\u00f3n de la GPU para realizar escrituras en p\u00e1ginas de memoria f\u00edsica arbitrarias.\n\nEl producto utiliza un recurso compartido de manera concurrente, pero no intenta sincronizar el acceso al recurso."}], "lastModified": "2026-04-21T16:53:35.500", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:imaginationtech:ddk:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "353FDA3E-D8FC-4482-82E9-E86AD9455FB8", "versionEndIncluding": "25.3", "versionStartIncluding": "25.1"}, {"criteria": "cpe:2.3:a:imaginationtech:ddk:1.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C2A0AE6-35B7-4221-8E49-6CF3AD9B3927"}, {"criteria": "cpe:2.3:a:imaginationtech:ddk:1.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "822E865A-168C-4F82-95C7-B1752575C175"}, {"criteria": "cpe:2.3:a:imaginationtech:ddk:23.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F512C3D-CF11-492B-8CAB-CF51965F4250"}, {"criteria": "cpe:2.3:a:imaginationtech:ddk:24.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8C31AED8-475E-464F-856B-9F5760CEBDF4"}, {"criteria": "cpe:2.3:a:imaginationtech:ddk:24.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C9CC454-864E-46E5-AD29-E81F8290EDEC"}], "operator": "OR"}]}], "sourceIdentifier": "367425dc-4d06-4041-9650-c2dc6aaa27ce"}