Vulnerabilities > CVE-2023-4211 - Use After Free vulnerability in ARM products
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Related news
- Arm warns of Mali GPU flaws likely exploited in targeted attacks (source)
- Arm Issues Patch for Mali GPU Kernel Driver Vulnerability Amidst Ongoing Exploitation (source)
- Zero-day in Arm GPU drivers exploited in targeted attacks (CVE-2023-4211) (source)
- Qualcomm says hackers exploit 3 zero-days in its GPU, DSP drivers (source)
- Android October security update fixes zero-days exploited in attacks (source)