CVE-2026-34193 – GPU DDK – Arbitrary write via UFO updates due insufficient pointer validation in rgxfw_to_ptr()

CVE ID :CVE-2026-34193

Published : June 1, 2026, 1:16 p.m. | 1 hour, 16 minutes ago

Description :Kernel software installed and running inside a Guest/Host VM may post improper commands to the GPU Firmware to trigger a write of data outside the intended GPU memory.

A logic error in the address translation allowed a compromised Host (Kernel) to perform arbitrary writes to firmware memory.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-9309 – Arbitrary JavaScript execution in internal pages via Reader View JSON-LD injection

CVE-2026-9308 – Arbitrary JavaScript execution in Reader View due to wrong HTML replacement order

CVE-2026-10532 – Logback deserialization whitelist bypass for Proxy objects

CVE-2026-10258 – itsourcecode Content Management System add_sub_topic.php sql injection