CVE-2026-21733
GPU DDK - Incorrect flags validation in RGXDerivePTEProt8 can allow GPU to overwrite read-only shared memory (e.g. libc.so)
CVSS Score
7.3
EPSS Score
0.0%
EPSS Percentile
0th
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permission to read-only wrapped user-mode memory and files. This is caused by improper handling of GPU memory reservation protections.
| CWE | CWE-280 |
| Vendor | imagination technologies |
| Product | graphics ddk |
| Published | Apr 17, 2026 |
| Last Updated | Apr 17, 2026 |
Stay Ahead of the Next One
Get instant alerts for imagination technologies graphics ddk
Be the first to know when new high vulnerabilities affecting imagination technologies graphics ddk are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Imagination Technologies / Graphics DDK
1.17 RTM 1.18 RTM 23.2 RTM 24.1 RTM โค 24.2 RTM 25.1 RTM โค 25.3 RTM