CVE-2014-0972

EPSS 0.05%
Veröffentlicht 01.08.2014 11:13:08
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

The kgsl graphics driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly prevent write access to IOMMU context registers, which allows local users to select a custom page table, and consequently write to arbitrary memory locations, by using a crafted GPU command stream to modify the contents of a certain register.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Codeaurora ≫ Android-msm Version3.2.54

Codeaurora ≫ Android-msm Version3.4.72

Codeaurora ≫ Android-msm Version3.4.73

Codeaurora ≫ Android-msm Version3.4.74

Codeaurora ≫ Android-msm Version3.4.75

Codeaurora ≫ Android-msm Version3.4.76

Codeaurora ≫ Android-msm Version3.4.77

Codeaurora ≫ Android-msm Version3.4.78

Codeaurora ≫ Android-msm Version3.4.79

Codeaurora ≫ Android-msm Version3.10

Codeaurora ≫ Android-msm Version3.10.22

Codeaurora ≫ Android-msm Version3.10.23

Codeaurora ≫ Android-msm Version3.10.24

Codeaurora ≫ Android-msm Version3.10.25

Codeaurora ≫ Android-msm Version3.10.26

Codeaurora ≫ Android-msm Version3.10.27

Codeaurora ≫ Android-msm Version3.10.28

Codeaurora ≫ Android-msm Version3.10.29

Codeaurora ≫ Android-msm Version3.12.3

Codeaurora ≫ Android-msm Version3.12.4

Codeaurora ≫ Android-msm Version3.12.5

Codeaurora ≫ Android-msm Version3.12.6

Codeaurora ≫ Android-msm Version3.12.7

Codeaurora ≫ Android-msm Version3.12.8

Codeaurora ≫ Android-msm Version3.12.9

Codeaurora ≫ Android-msm Version3.12.10

Codeaurora ≫ Android-msm Version3.13

Codeaurora ≫ Android-msm Version3.13 Updaterc1

Codeaurora ≫ Android-msm Version3.13 Updaterc2

Codeaurora ≫ Android-msm Version3.13 Updaterc3

Codeaurora ≫ Android-msm Version3.13 Updaterc4

Codeaurora ≫ Android-msm Version3.13 Updaterc5

Codeaurora ≫ Android-msm Version3.13 Updaterc6

Codeaurora ≫ Android-msm Version3.13 Updaterc7

Codeaurora ≫ Android-msm Version3.13 Updaterc8

Codeaurora ≫ Android-msm Version3.13.1

Codeaurora ≫ Android-msm Version3.13.2

Codeaurora ≫ Android-msm Version3.14 Updaterc1

Codeaurora ≫ Android-msm Version3.14 Updaterc2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.115

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

https://www.codeaurora.org/projects/security-advisories/unprivileged-gpu-command-streams-can-change-the-iommu-page-table-cve-2014-0972

https://nvd.nist.gov/vuln/detail/CVE-2014-0972

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-0972

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-0972

EUVD