Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Imagination Technologies — Vulnerabilities & Security Advisories 59

Browse all 59 CVE security advisories affecting Imagination Technologies. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Imagination Technologies specializes in graphics processing units and multimedia technologies, primarily supplying intellectual property licenses to semiconductor manufacturers for embedded systems and mobile devices. With fifty-nine recorded Common Vulnerabilities and Exposures, the company’s historical attack surface has predominantly featured remote code execution and buffer overflow flaws within its proprietary middleware and driver software. These vulnerabilities often stem from insufficient input validation in image processing pipelines, allowing attackers to escalate privileges or execute arbitrary code on affected endpoints. While no single catastrophic breach has defined the firm’s public security narrative, the cumulative impact of these CVEs highlights risks in its embedded software stack. Security assessments indicate that many issues were resolved through routine firmware updates, yet the persistent presence of memory corruption bugs suggests ongoing challenges in securing complex, low-level hardware abstractions used across diverse consumer electronics.

Found 59 results / 59Clear Filters
Top products by Imagination Technologies: Graphics DDK
CVE IDTitleCVSSSeverityPublished
CVE-2025-0835 GPU DDK - _WrapExtMemReleasePages called twice if _FlushUMVirtualRange fails — Graphics DDKCWE-416 7.8AIHighAI2025-03-24
CVE-2025-0478 GPU DDK - PMMETA_PROTECT PMR can be exported as dma-buf file / GEM object — Graphics DDKCWE-280 5.5AIMediumAI2025-03-24
CVE-2024-12837 GPU DDK - Exploitable kernel double free on apsFenceSyncCheckpoints allocated with arbitrary size — Graphics DDKCWE-416 7.8 -2025-03-07
CVE-2024-12576 GPU DDK - Untrusted app can crash firmware by forcing MCU access to non-aligned address — Graphics DDKCWE-822 5.5 -2025-03-07
CVE-2024-12577 GPU DDK - rgxfw_pcset_ungrab OOB write via psFWMemContext->uiPageCatBaseRegSet — Graphics DDKCWE-823 7.8 -2025-02-22
CVE-2024-52939 GPU DDK - RGXFWIF_HWPERF_CTL_BLK.uiNumCounters OOB write — Graphics DDKCWE-823 7.8 -2025-02-22
CVE-2024-47896 GPU DDK - rgxfw_hwr_log_info OOB write via psHWRInfoBuf->ui32WriteIndex — Graphics DDKCWE-823 7.8 -2025-02-22
CVE-2024-46975 GPU DDK - rgxfw_write_robustness_buffer allows arbitrary catreg set mapping — Graphics DDKCWE-270 7.8 -2025-02-22
CVE-2024-47900 GPU DDK - Multiple integer overflow in DmaTransfer PMR_DevPhysAddr functions leading to OOB writes — Graphics DDKCWE-823 7.1 -2025-01-31
CVE-2024-47899 GPU DDK - PVRSRVDeviceServicesOpen use-after-free condition — Graphics DDKCWE-416 7.8 -2025-01-31
CVE-2024-47898 GPU DDK - PVRSRVDeviceSyncOpen use-after-free condition — Graphics DDKCWE-416 7.8 -2025-01-31
CVE-2024-47891 GPU DDK - Exploitable double free on PTL_STREAM_DESC object in the kernel function TLServerCloseStreamKM due to a race condition — Graphics DDKCWE-416 7.8 -2025-01-31
CVE-2024-46974 GPU DDK - Arbitrary write of read-only dmabuf — Graphics DDKCWE-266 7.8 -2025-01-31
CVE-2024-52938 GPU DDK - rgxfw_pm_add_freelist_for_reconstruction OOB write — Graphics DDKCWE-823 7.8 -2025-01-13
CVE-2024-52937 GPU DDK - rgxfw_kernel_CMD_DISABLE_ZSSTORE OOB write via ui32WriteOffsetOfDisableZSStore — Graphics DDKCWE-823 7.8 -2025-01-13
CVE-2024-52936 GPU DDK - rgxfw_hwperf_config OOB read & write — Graphics DDKCWE-823 7.8 -2025-01-13
CVE-2024-52935 GPU DDK - psContext->eDM gives OOB write — Graphics DDKCWE-823 7.8 -2025-01-13
CVE-2024-47895 GPU DDK - OOB read into fwlog due to unchecked block count — Graphics DDKCWE-823 5.5 -2025-01-13
CVE-2024-47894 GPU DDK - Out of bounds read into fwlog due to unchecked loop bounds — Graphics DDKCWE-823 5.5 -2025-01-13
CVE-2024-47897 GPU DDK - PVRSRVRGXGetEnabledHWPerfBlocksKM off-by-one OOB write — Graphics DDKCWE-787 5.5 -2025-01-13
CVE-2024-43705 GPU DDK - Security: Exploitable PVRSRVBridgePhysmemWrapExtMem may lead to overwrite read-only file/memory (e.g. libc.so) — Graphics DDKCWE-280 7.1 -2024-12-28
CVE-2024-46973 Exploitable kernel use-after-free on psServerMMUContext due to reference count mismanagement — Graphics DDKCWE-416 7.8 -2024-12-28
CVE-2024-46972 GPU DDK - Security: Reference count overflow in pvr_sync_rollback_export_fence — Graphics DDKCWE-911 7.8 -2024-12-28
CVE-2024-47892 GPU DDK - UAF of kernel memory in PMRUnlockPhysAddressesOSMem for on-demand non-4KB PMRs in system memory (UMA) — Graphics DDKCWE-416 7.8 -2024-12-13
CVE-2024-46971 GPU DDK - UAF of memory in PMRUnlockSysPhysAddressesLocalMem for on-demand PMRs on PCI (LMA) systems — Graphics DDKCWE-416 7.8 -2024-12-13
CVE-2024-43703 GPU DDK - Duplicate calls to RGXCreateFreeList on the same reservation leads to GPU UAF — Graphics DDKCWE-416 7.8 -2024-11-30
CVE-2024-43702 GPU DDK - MLIST/PM render state buffers writable allowing arbitrary writes to kernel memory pages — Graphics DDKCWE-280 7.8 -2024-11-30
CVE-2024-43704 GPU DDK - PowerVR: PVRSRVAcquireProcessHandleBase can cause psProcessHandleBase reuse when PIDs are reused — Graphics DDKCWE-668 7.1AIHighAI2024-11-18
CVE-2024-43701 GPU DDK - PowerVR: TLB invalidate UAF of dma_buf imported into multiple GPU devices — Graphics DDKCWE-416 7.8AIHighAI2024-10-14

This page lists every published CVE security advisory associated with Imagination Technologies. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.