VYPR
Get started

Ddk

Sign in to watch

by Imaginationtech

CVEs (2)

CVESevRiskCVSSEPSSKEVPublishedDescription
CVE-2026-21732Cri0.629.60.00Mar 20, 2026A web page that contains unusual GPU shader code is loaded into the GPU compiler process and can trigger a write out-of-bounds write crash in the GPU shader compiler library. On certain platforms, when the compiler process has system privileges this could enable further exploits on the device. An edge case using a very large value in switch statements in GPU shader code can cause a segmentation fault in the GPU shader compiler due to an out-of-bounds write access.
CVE-2026-22163Hig0.517.80.00Mar 20, 2026Requires malware code to misuse the DDK kernel module IOCTL interface. Such code can use the interface in an unsupported way that allows subversion of the GPU to perform writes to arbitrary physical memory pages. The product utilises a shared resource in a concurrent manner but does not attempt to synchronise access to the resource.