GPU DDK – Kernel heap OOB write in PMRChangeSparseMemOSMem due...

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Software installed and run as a non-privileged user may conduct intentional GPU sparse memory API calls to cause out of bounds write in the kernel.

The product incorrectly indexes internal state when performing sparse allocation remapping.

AI Analysis

Kernel heap out-of-bounds write vulnerability due to incorrect physical page translation from virtual page indexes in the GPU DDK

Basic Information

ID CVE-2026-34195

Source imaginationtech

Published Jun 12, 2026 at 21:43

Modified Jun 15, 2026 at 19:27

Affected Product

Vendor Imagination Technologies

Product Graphics DDK

Version 1.18 RTM

Affected Versions Imagination Technologies Graphics DDK 24.2 RTM
Imagination Technologies Graphics DDK 25.1 RTM

CWE Classification

CWE-787

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor Imagination Technologies

Product Graphics DDK

Version 24.2 RTM, 25.1 RTM

References

www.imaginationtech.com /gpu-driver-vulnerabilities/

{
    "lastseen": "",
    "description": "Software installed and run as a non-privileged user may conduct intentional GPU sparse memory API calls to cause out of bounds write in the kernel.\n\n\n\nThe product incorrectly indexes internal state when performing sparse allocation remapping.",
    "published": "2026-06-12T21:43:40.618Z",
    "modified": "2026-06-15T19:27:12.847Z",
    "type": "cve",
    "title": "GPU DDK - Kernel heap OOB write in PMRChangeSparseMemOSMem due to incorrect physical page translation from virtual page indexes",
    "source": "imaginationtech",
    "references": "https://www.imaginationtech.com/gpu-driver-vulnerabilities/",
    "id": "CVE-2026-34195",
    "bulletinFamily": "",
    "cwe": [
        "CWE-787"
    ],
    "cvelist": null,
    "sourceData": "Imagination Technologies Graphics DDK 24.2 RTM\nImagination Technologies Graphics DDK 25.1 RTM",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Graphics DDK",
    "version": "1.18 RTM",
    "vendor": "Imagination Technologies",
    "ai_description": "Kernel heap out-of-bounds write vulnerability due to incorrect physical page translation from virtual page indexes in the GPU DDK",
    "ai_severity": "High",
    "ai_vendor": "Imagination Technologies",
    "ai_product": "Graphics DDK",
    "ai_version": "24.2 RTM, 25.1 RTM",
    "ai_score": 8.8
}

GPU DDK – Kernel heap OOB write in PMRChangeSparseMemOSMem due to incorrect physical page translation from virtual page indexes_CVE-2026-34195