Unrated severityCISA KEVNVD Advisory· Published May 10, 2021· Updated Oct 21, 2025

CVE-2021-28663

Description

The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0.

Affected products

Arm/Arm Mali GPU kernel driverdescription

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

developer.arm.com/support/arm-security-updatesmitre
developer.arm.com/support/arm-security-updates/mali-gpu-kernel-drivermitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.120
patch	0.000
ransomware	0.000