CRITICAL🇵🇱 Wersja polska

CVE-2025-25176

CVSS 9.1v3.1pub. 2026-01-13upd. 2026-01-30

Intermediate register values of secure workloads can be exfiltrated in workloads scheduled from applications running in the non-secure environment of a platform.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
  • Imaginationtech Ddk

    APP
    Imaginationtech
    < 25.3
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2026-21732CRITICAL9.6PL ✓ten sam produkt

Out-of-bounds write w kompilatorze GPU shader Imagination Technologies DDK

CVE-2025-13952CRITICAL9.8PL ✓ten sam produkt

Use-after-free w kompilatorze shaderów GPU biblioteki Imagination DDK

CVE-2026-45195HIGH7.8ten sam produkt

Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigg...

CVE-2026-21734HIGH7.7ten sam produkt

A web page that contains unusual GPU shader code is loaded into the GPU compiler process and can trigger a wri...

CVE-2026-22165HIGH8.1ten sam produkt

A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger a writ...