ByteOS Network

Vulnerability Details :

CVE-2024-47900

Summary

Assigner-imaginationtech

Assigner Org ID-367425dc-4d06-4041-9650-c2dc6aaa27ce

Published At-31 Jan, 2025 | 03:19

Updated At-14 Mar, 2025 | 15:20

GPU DDK - Multiple integer overflow in DmaTransfer PMR_DevPhysAddr functions leading to OOB writes

Software installed and run as a non-privileged user may conduct improper GPU system calls to access OOB kernel memory.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:imaginationtech

Assigner Org ID:367425dc-4d06-4041-9650-c2dc6aaa27ce

Published At:31 Jan, 2025 | 03:19

Updated At:14 Mar, 2025 | 15:20

▼CVE Numbering Authority (CNA)

GPU DDK - Multiple integer overflow in DmaTransfer PMR_DevPhysAddr functions leading to OOB writes

Software installed and run as a non-privileged user may conduct improper GPU system calls to access OOB kernel memory.

Affected Products

Vendor

Imagination Technologies Limited

Product

Graphics DDK

Platforms

Linux
Android

Default Status

unknown

Versions

Affected

From 1.15 RTM through 24.3 RTM2 (custom)

Unaffected

25.1 RTM (custom)

Problem Types

Type	CWE ID	Description
CWE	CWE-823	CWE-823: Use of Out-of-range Pointer Offset

Type: CWE

CWE ID: CWE-823

Description: CWE-823: Use of Out-of-range Pointer Offset

Impacts

CAPEC ID	Description
CAPEC-129	CAPEC-129: Pointer Manipulation

CAPEC ID: CAPEC-129

Description: CAPEC-129: Pointer Manipulation

References

Hyperlink	Resource
https://www.imaginationtech.com/gpu-driver-vulnerabilities/	N/A

Hyperlink: https://www.imaginationtech.com/gpu-driver-vulnerabilities/

Resource: N/A

▼Authorized Data Publishers (ADP)

CISA ADP Vulnrichment

Metrics

Version	Base score	Base severity	Vector
3.1	7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Version: 3.1

Base score: 7.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Metrics Other Info

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:367425dc-4d06-4041-9650-c2dc6aaa27ce

Published At:31 Jan, 2025 | 04:15

Updated At:14 Mar, 2025 | 16:15

Software installed and run as a non-privileged user may conduct improper GPU system calls to access OOB kernel memory.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Type: Secondary

Version: 3.1

Base score: 7.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Weaknesses

CWE ID	Type	Source
CWE-823	Secondary	367425dc-4d06-4041-9650-c2dc6aaa27ce

CWE ID: CWE-823

Type: Secondary

Source: 367425dc-4d06-4041-9650-c2dc6aaa27ce

References

Hyperlink	Source	Resource
https://www.imaginationtech.com/gpu-driver-vulnerabilities/	367425dc-4d06-4041-9650-c2dc6aaa27ce	N/A

Hyperlink: https://www.imaginationtech.com/gpu-driver-vulnerabilities/

Source: 367425dc-4d06-4041-9650-c2dc6aaa27ce

Resource: N/A

Similar CVEs

52Records found

CVE-2024-45570

Matching Score-4

Assigner-Qualcomm, Inc.

View Details

Matching Score-4

Assigner-Qualcomm, Inc.

CVSS Score-6.6||MEDIUM

EPSS-0.02% / 2.58%

7 Day CHG~0.00%

Published-06 May, 2025 | 08:32

Updated-09 May, 2025 | 19:16

Use of Out-of-range Pointer Offset in Camera Driver

Memory corruption may occur during IO configuration processing when the IO port count is invalid.

Vendor-Qualcomm Technologies, Inc.

Product-fastconnect_7800_firmware wcd9341 qca6696_firmware qam8295p sw5100p wcd9385_firmware wcn3988_firmware snapdragon_865\+_5g_mobile qca6426 sa9000p wsa8835_firmware qcs610 snapdragon_w5\+_gen_1_wearable_firmware qam8295p_firmware qsm8250_firmware wcn3980 qca6696 sa8540p_firmware c-v2x_9150_firmware qcs410 qsm8250 wsa8832_firmware sa6150p_firmware wcn3620_firmware wcd9385 sa8530p qca6391 sa8295p sxr2230p wcn3620 snapdragon_x55_5g_modem-rf_system snapdragon_865_5g_mobile_firmware fastconnect_6800_firmware sa6155p_firmware snapdragon_429_mobile sa8195p_firmware sw5100p_firmware snapdragon_xr2_5g qca6574au_firmware wcd9370_firmware sa8155p_firmware sdm429w snapdragon_865\+_5g_mobile_firmware fastconnect_6900 c-v2x_9150 snapdragon_8_gen_1_mobile snapdragon_870_5g_mobile_firmware sa8145p_firmware fastconnect_7800 wcn3680b wsa8832 sa8150p sxr2130_firmware wcn3660b wsa8810 wcd9380_firmware sd865_5g_firmware snapdragon_w5\+_gen_1_wearable snapdragon_429_mobile_firmware video_collaboration_vc1_platform_firmware wcd9341_firmware wsa8835 qcn9074_firmware snapdragon_xr2_5g_firmware wcd9370 sdm429w_firmware wsa8830 sa9000p_firmware qca6574au video_collaboration_vc3_platform sa6145p sa8195p sa6150p snapdragon_8_gen_1_mobile_firmware wsa8815_firmware snapdragon_865_5g_mobile wcn3980_firmware wcn3950_firmware sa8530p_firmware sa8540p sa8295p_firmware sd865_5g sw5100_firmware video_collaboration_vc3_platform_firmware sw5100 snapdragon_x55_5g_modem-rf_system_firmware sxr2250p sxr2130 wsa8810_firmware sxr2230p_firmware fastconnect_6800 qca6426_firmware sa8150p_firmware snapdragon_870_5g_mobile wcn3950 wcn3988 wcn3680b_firmware wsa8830_firmware sxr2250p_firmware wcd9380 sdx55_firmware wsa8815 qcs610_firmware qca6436_firmware qca6436 sa6155p sa8155p sdx55 sa8145p video_collaboration_vc1_platform fastconnect_6900_firmware sa6145p_firmware qcn9074 wcn3660b_firmware qca6391_firmware qcs410_firmware Snapdragon

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE ID-CWE-823

Use of Out-of-range Pointer Offset

CVE-2024-33041

Matching Score-4

Assigner-Qualcomm, Inc.

View Details

Matching Score-4

Assigner-Qualcomm, Inc.

CVSS Score-6.7||MEDIUM

EPSS-0.02% / 3.85%

7 Day CHG~0.00%

Published-06 Jan, 2025 | 10:33

Updated-11 Aug, 2025 | 15:06

Use of Out-of-range Pointer Offset in Computer Vision

Memory corruption when input parameter validation for number of fences is missing for fence frame IOCTL calls,

Vendor-Qualcomm Technologies, Inc.

Product-qcm8550_firmware sa6150p_firmware wsa8845_firmware wsa8832 sa6155p_firmware wsa8840 qam8295p_firmware qcs8550_firmware qca6696 snapdragon_8_gen_2_mobile_firmware wcd9385 wcd9395_firmware sxr1230p_firmware wcd9390_firmware snapdragon_8_gen_2_mobile sg8275p wsa8832_firmware sa8195p_firmware wcd9395 ssg2125p sg8275p_firmware snapdragon_8\+_gen_2_mobile qca6574au_firmware sa8195p qam8295p qca6574au wcd9390 wsa8845h_firmware sm8550p_firmware qcm8550 qcs6490_firmware wsa8835 wsa8840_firmware sa8295p_firmware qca6696_firmware wsa8845h wcd9380_firmware sa6150p sa8155p_firmware sa8155p wsa8830 sm8550p sa6145p ssg2115p snapdragon_8_gen_3_mobile_firmware fastconnect_7800_firmware fastconnect_6900 ssg2125p_firmware wcd9385_firmware fastconnect_6900_firmware sa8295p qcs8550 sa6145p_firmware wcd9380 fastconnect_7800 sa8145p_firmware sa8150p snapdragon_8\+_gen_2_mobile_firmware sa8150p_firmware wsa8845 sa6155p video_collaboration_vc3_platform_firmware sa8145p wsa8835_firmware ssg2115p_firmware sxr1230p qcs6490 snapdragon_8_gen_3_mobile wsa8830_firmware video_collaboration_vc3_platform Snapdragon

CWE ID-CWE-787

Out-of-bounds Write

CWE ID-CWE-823

Use of Out-of-range Pointer Offset

CVE-2024-47900

Credits

GPU DDK - Multiple integer overflow in DmaTransfer PMR_DevPhysAddr functions leading to OOB writes

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Unaffected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs