CVE-2026-34194— GPU DDK - UAF read and/or write to arbitrary physical pages in DevmemIntChangeSparse due to incorrect calculation of the virtual index count
Possible ATT&CK Techniques 1AI
T1203 · Exploitation for Client ExecutionAffected Version Matrix 5
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Imagination Technologies | Graphics DDK | 1.18 RTM | unaffected |
23.2 RTM | unaffected | ||
24.2 RTM | affected | ||
25.1 RTM≤ 25.3 RTM | affected | ||
26.1 RTM | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-34194
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
GPU DDK - UAF read and/or write to arbitrary physical pages in DevmemIntChangeSparse due to incorrect calculation of the virtual index count
Source: NVD (National Vulnerability Database)
Vulnerability Description
Software installed and run as a non-privileged user may conduct improper GPU system calls to cause mismanagement of a mapping state maintained for a sparse memory allocation. The product accidentally refers to the wrong memory due to the semantics of how math operations are implicitly scaled across buffers of different sizes.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
不正确的指针放大
Source: NVD (National Vulnerability Database)
Vulnerability Title
Imagination Graphics DDK 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Imagination Graphics DDK是英国Imagination公司的一款GPU驱动工具套件。 Imagination Graphics DDK存在安全漏洞,该漏洞源于软件以非特权用户身份运行时可能进行不当GPU系统调用,导致稀疏内存分配的映射状态管理错误,产品因数学运算在不同大小缓冲区中隐式缩放的方式引用错误内存。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Imagination Technologies | Graphics DDK | 1.18 RTM | - |
II. Public POCs for CVE-2026-34194
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-34194
请登录查看更多情报信息。
News Coverage for CVE-2026-34194 (1)
IV. Related Vulnerabilities
Same product: Graphics DDK
- CVE-2026-41158
GPU DDK - Backed sparse PMRs are not handled by deferred fre - CVE-2026-41157
GPU DDK - OOB Write in CalculateNPOTTwiddleSparsePageMap3D - CVE-2026-41155
GPU DDK - SharedSecMem mapped into all GPU virtual address s - CVE-2026-34195
GPU DDK - Kernel heap OOB write in PMRChangeSparseMemOSMem d - CVE-2026-22164
GPU DDK - Kernel heap OOB write in DevmemIntComputeVirtualIn
Same vendor: Imagination Technologies
- CVE-2026-41158
GPU DDK - Backed sparse PMRs are not handled by deferred fre - CVE-2026-41157
GPU DDK - OOB Write in CalculateNPOTTwiddleSparsePageMap3D - CVE-2026-41155
GPU DDK - SharedSecMem mapped into all GPU virtual address s - CVE-2026-34195
GPU DDK - Kernel heap OOB write in PMRChangeSparseMemOSMem d - CVE-2026-22164
GPU DDK - Kernel heap OOB write in DevmemIntComputeVirtualIn
V. Comments for CVE-2026-34194
No comments yet