Skip to main content

Graphics Ddk CVE-2026-22163

| EUVDEUVD-2026-13836 HIGH
Missing Synchronization (CWE-820)
2026-03-20 imaginationtech
7.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.8 HIGH
AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
Re-analysis Queued
Apr 21, 2026 - 17:07 vuln.today
cvss_changed
EUVD ID Assigned
Mar 20, 2026 - 23:16 euvd
EUVD-2026-13836
Analysis Generated
Mar 20, 2026 - 23:16 vuln.today
CVE Published
Mar 20, 2026 - 22:52 nvd
HIGH 7.8

DescriptionCVE.org

Requires malware code to misuse the DDK kernel module IOCTL interface.

Such code can use the interface in an unsupported way that allows subversion of the GPU to perform writes to arbitrary physical memory pages.

The product utilises a shared resource in a concurrent manner but does not attempt to synchronise access to the resource.

AnalysisAI

Unsafe IOCTL handling in the DDK kernel module allows local attackers with limited privileges to bypass GPU memory protections and write to arbitrary physical memory through race condition exploitation. This privilege escalation vulnerability affects systems using the vulnerable DDK driver and requires no user interaction to trigger. No patch is currently available.

Technical ContextAI

The vulnerability resides in Imagination Technologies' Graphics DDK (Driver Development Kit), a kernel-mode graphics driver component used across various GPU implementations. The root cause is classified as CWE-820 (Improper Synchronization), indicating that the IOCTL (Input/Output Control) interface of the DDK kernel module does not properly synchronize access to shared resources in concurrent contexts. The GPU is leveraged as a vehicle for performing memory operations because it has direct access to physical memory that can bypass normal memory protection mechanisms. When multiple execution contexts access the same shared resource without proper locking primitives or atomic operations, race conditions emerge that allow out-of-order or interleaved operations, permitting an attacker to manipulate GPU command queues or memory descriptors to write to arbitrary physical addresses.

RemediationAI

Apply the security patch released by Imagination Technologies for Graphics DDK by updating to the latest patched version available through the vendor's official security advisory at https://www.imaginationtech.com/gpu-driver-vulnerabilities/. System administrators should prioritize this update, particularly for production systems and environments where kernel-mode execution or GPU access is available to untrusted code. As an interim measure pending patch deployment, restrict kernel-mode code execution and disable or restrict GPU access from untrusted user-space processes through kernel security modules (LSM, AppArmor, SELinux), implement memory access controls at the IOMMU/SMMU level to limit GPU DMA capabilities, and consider disabling GPU access entirely on systems where GPU functionality is not critical. Monitor kernel logs for suspicious IOCTL calls to the DDK driver interface.

CVE-2026-41157 CRITICAL
9.8 Jun 12

Out-of-bounds write in the Imagination Technologies Graphics DDK (GPU user-space driver) can be triggered when a victim

CVE-2026-21732 CRITICAL
9.6 Mar 20

GPU shader compiler memory corruption via malicious shader code allows remote code execution when the compiler runs with

CVE-2026-34195 HIGH
8.8 Jun 12

Out-of-bounds kernel write in Imagination Technologies Graphics DDK (PowerVR GPU driver) allows a local non-privileged p

CVE-2026-41154 HIGH
7.8 Jul 10

Out-of-bounds kernel memory read/write in Imagination Technologies Graphics DDK (the driver kit for PowerVR GPUs) allows

CVE-2026-7639 HIGH
7.8 Jul 10

Local memory-corruption escalation in Imagination Technologies' Graphics DDK (the PowerVR GPU driver stack) lets an unpr

CVE-2026-34196 HIGH
7.8 Jul 10

Local privilege escalation in Imagination Technologies' Graphics DDK (PowerVR GPU driver) lets a non-privileged user tri

CVE-2026-45196 HIGH
7.8 Jul 10

Privilege escalation in Imagination Technologies' Graphics DDK GPU driver allows kernel-level software inside a Host VM

CVE-2026-45203 HIGH
7.8 Jul 10

Local privilege escalation and memory corruption in Imagination Technologies Graphics DDK (PowerVR GPU driver kit) lets

CVE-2026-45195 HIGH
7.8 Jun 26

Improper privilege handling in Imagination Technologies' Graphics DDK GPU driver lets privileged kernel code inside a Ho

CVE-2026-41158 HIGH
7.8 Jun 12

Local privilege escalation in Imagination Technologies Graphics DDK (GPU kernel driver) allows non-privileged users to i

CVE-2026-21734 HIGH
7.7 Jun 26

Out-of-bounds write in Imagination Technologies' Graphics DDK GPU shader compiler lets a crafted web page containing unu

CVE-2026-41156 HIGH
7.7 Jun 19

Local privilege escalation and denial of service in Imagination Technologies Graphics DDK arises from a write use-after-

Share

CVE-2026-22163 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy