CVE-2026-45196
Description
Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigger a GPU register access which can lead to privilege escalation.
Metadata
Severity & Metrics
No CVSS data available.
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| Imagination Technologies | Graphics DDK | Linux,Android | 1.18 RTM2, 23.2 RTM2, 24.2 RTM2, 25.1 RTM2 ≤ 25.3 RTM … |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-280 | cna | CWE-280: Improper Handling of Insufficient Permissions or Privileges (4.15) |
References (1)