Published: 25/10/2022 Updated: 13/12/2023

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 0

The Arm Mali GPU kernel driver allows unprivileged users to access freed memory because GPU memory operations are mishandled. This affects Bifrost r0p0 through r38p1, and r39p0; Valhall r19p0 through r38p1, and r39p0; and Midgard r4p0 through r32p0.

Vulnerable Product	Search on Vulmon	Subscribe to Product
arm valhall gpu kernel driver r39p0
arm bifrost gpu kernel driver r39p0
arm bifrost gpu kernel driver
arm valhall gpu kernel driver
arm midgard gpu kernel driver

CVE-2022-38181 POC for FireTV 2nd gen Cube (raven)

Exploit for CVE-2022-38181 for FireTV 2nd gen Cube This is a fork of security researcher Man Yue Mo's Pixel 6 POC for CVE_2022_38181 Read his detailed write-up of the vulnerability here Changes have been made to account for FireOS's 32bit userspace, as well as the 2nd gen Cube's older Bifrost drivers (r16p0) and Linux kernel (49113) versions The POC exploi

CVE-2022-38181 POC for FireTV 3rd gen Cube (gazelle)

Exploit for CVE-2022-38181 to run on FireTV 3rd gen Cube This is a fork of security researcher Man Yue Mo's Pixel 6 POC for CVE_2022_38181 Read his detailed write-up of the vulnerability here Changes have been made to account for FireOS's 32bit userspace The POC exploits a bug in the ARM Mali kernel driver to gain arbitrary kernel code execution, which is then us

CWE-416 https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities https://developer.arm.com/support/arm-security-updates https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/https://securitylab.github.com/advisories/GHSL-2022-054_Arm_Mali/http://packetstormsecurity.com/files/172854/Android-Arm-Mali-GPU-Arbitrary-Code-Execution.html https://nvd.nist.gov https://github.com/Pro-me3us/CVE_2022_38181_Raven

CVE-2022-38181

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect