cvelistv5 - CVE-2021-28663

CVE-2021-28663 (GCVE-0-2021-28663)

Vulnerability from cvelistv5 – Published: 2021-05-10 00:00 – Updated: 2025-10-21 23:25

CISA

Summary

The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0.

Severity ?

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

Assigner

mitre

References

URL

Tags

	https://developer.arm.com/support/arm-security-updates
	https://developer.arm.com/support/arm-security-up…
	https://github.com/lntrx/CVE-2021-28663

CISA Known Exploited Vulnerability

Data from the CISA Known Exploited Vulnerabilities Catalog

Date added: 2021-11-03

Due date: 2021-11-17

Required action: Apply updates per vendor instructions.

Used in ransomware: Unknown

Notes: https://nvd.nist.gov/vuln/detail/CVE-2021-28663

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:arm:bifrost_gpu_kernel_driver:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "bifrost_gpu_kernel_driver",
            "vendor": "arm",
            "versions": [
              {
                "lessThanOrEqual": "r28p0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:arm:valhall_gpu_kernel_driver:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "valhall_gpu_kernel_driver",
            "vendor": "arm",
            "versions": [
              {
                "lessThanOrEqual": "r28p0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:arm:midgard_gpu_kernel_driver:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "midgard_gpu_kernel_driver",
            "vendor": "arm",
            "versions": [
              {
                "lessThanOrEqual": "r30p0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2021-28663",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-24T20:58:41.342252Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2021-11-03",
                "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-28663"
              },
              "type": "kev"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-21T23:25:46.291Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "government-resource"
            ],
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-28663"
          }
        ],
        "timeline": [
          {
            "lang": "en",
            "time": "2021-11-03T00:00:00+00:00",
            "value": "CVE-2021-28663 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T21:47:33.122Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://developer.arm.com/support/arm-security-updates"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/lntrx/CVE-2021-28663"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-02-23T00:00:00.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://developer.arm.com/support/arm-security-updates"
        },
        {
          "url": "https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver"
        },
        {
          "url": "https://github.com/lntrx/CVE-2021-28663"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2021-28663",
    "datePublished": "2021-05-10T00:00:00.000Z",
    "dateReserved": "2021-03-18T00:00:00.000Z",
    "dateUpdated": "2025-10-21T23:25:46.291Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "cisa_known_exploited": {
      "cveID": "CVE-2021-28663",
      "cwes": "[\"CWE-416\"]",
      "dateAdded": "2021-11-03",
      "dueDate": "2021-11-17",
      "knownRansomwareCampaignUse": "Unknown",
      "notes": "https://nvd.nist.gov/vuln/detail/CVE-2021-28663",
      "product": "Mali Graphics Processing Unit (GPU)",
      "requiredAction": "Apply updates per vendor instructions.",
      "shortDescription": "Arm Mali Graphics Processing Unit (GPU) kernel driver contains a use-after-free vulnerability that may allow a non-privileged user to make improper operations on GPU memory to gain root privilege, and/or disclose information.",
      "vendorProject": "Arm",
      "vulnerabilityName": "Arm Mali Graphics Processing Unit (GPU) Use-After-Free Vulnerability"
    },
    "fkie_nvd": {
      "cisaActionDue": "2021-11-17",
      "cisaExploitAdd": "2021-11-03",
      "cisaRequiredAction": "Apply updates per vendor instructions.",
      "cisaVulnerabilityName": "Arm Mali Graphics Processing Unit (GPU) Use-After-Free Vulnerability",
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:arm:bifrost_gpu_kernel_driver:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"r0p0\", \"versionEndExcluding\": \"r29p0\", \"matchCriteriaId\": \"D4A585CF-8557-4660-BD0B-EAE94D1BF8A2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:arm:midgard_gpu_kernel_driver:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"r4p0\", \"versionEndExcluding\": \"r31p0\", \"matchCriteriaId\": \"6E1FE39A-BD55-4C5F-BBAA-1138340F8329\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:arm:valhall_gpu_kernel_driver:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"r19p0\", \"versionEndExcluding\": \"r29p0\", \"matchCriteriaId\": \"AA218DCD-3CAF-4A64-BE97-F7E4916D9C6F\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0.\"}, {\"lang\": \"es\", \"value\": \"El controlador del kernel de Arm Mali GPU, permite una escalada de privilegios o una divulgaci\\u00f3n de informaci\\u00f3n porque las operaciones de la memoria de la GPU son manejadas inapropiadamente, conllevando a un uso de la memoria previamente liberada.\u0026#xa0;Esto afecta a Bifrost versiones r0p0 hasta r28p0, anteriores a r29p0, Valhall versiones r19p0 hasta r28p0 anteriores a r29p0 y Midgard versiones r4p0 hasta r30p0\"}]",
      "id": "CVE-2021-28663",
      "lastModified": "2024-11-21T06:00:03.530",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.9}, {\"source\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:S/C:C/I:C/A:C\", \"baseScore\": 9.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.0, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2021-05-10T15:15:07.557",
      "references": "[{\"url\": \"https://developer.arm.com/support/arm-security-updates\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://github.com/lntrx/CVE-2021-28663\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"https://developer.arm.com/support/arm-security-updates\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://github.com/lntrx/CVE-2021-28663\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-416\"}]}, {\"source\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-416\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2021-28663\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2021-05-10T15:15:07.557\",\"lastModified\":\"2025-11-03T15:16:38.717\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0.\"},{\"lang\":\"es\",\"value\":\"El controlador del kernel de Arm Mali GPU, permite una escalada de privilegios o una divulgaci\u00f3n de informaci\u00f3n porque las operaciones de la memoria de la GPU son manejadas inapropiadamente, conllevando a un uso de la memoria previamente liberada.\u0026#xa0;Esto afecta a Bifrost versiones r0p0 hasta r28p0, anteriores a r29p0, Valhall versiones r19p0 hasta r28p0 anteriores a r29p0 y Midgard versiones r4p0 hasta r30p0\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:C/I:C/A:C\",\"baseScore\":9.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"cisaExploitAdd\":\"2021-11-03\",\"cisaActionDue\":\"2021-11-17\",\"cisaRequiredAction\":\"Apply updates per vendor instructions.\",\"cisaVulnerabilityName\":\"Arm Mali Graphics Processing Unit (GPU) Use-After-Free Vulnerability\",\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arm:bifrost_gpu_kernel_driver:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"r0p0\",\"versionEndExcluding\":\"r29p0\",\"matchCriteriaId\":\"D4A585CF-8557-4660-BD0B-EAE94D1BF8A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arm:midgard_gpu_kernel_driver:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"r4p0\",\"versionEndExcluding\":\"r31p0\",\"matchCriteriaId\":\"6E1FE39A-BD55-4C5F-BBAA-1138340F8329\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:arm:valhall_gpu_kernel_driver:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"r19p0\",\"versionEndExcluding\":\"r29p0\",\"matchCriteriaId\":\"AA218DCD-3CAF-4A64-BE97-F7E4916D9C6F\"}]}]}],\"references\":[{\"url\":\"https://developer.arm.com/support/arm-security-updates\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/lntrx/CVE-2021-28663\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"https://developer.arm.com/support/arm-security-updates\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/lntrx/CVE-2021-28663\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-28663\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"US Government Resource\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://developer.arm.com/support/arm-security-updates\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/lntrx/CVE-2021-28663\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T21:47:33.122Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2021-28663\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"active\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-07-24T20:58:41.342252Z\"}}}, {\"other\": {\"type\": \"kev\", \"content\": {\"dateAdded\": \"2021-11-03\", \"reference\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-28663\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:arm:bifrost_gpu_kernel_driver:-:*:*:*:*:*:*:*\"], \"vendor\": \"arm\", \"product\": \"bifrost_gpu_kernel_driver\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"r28p0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:arm:valhall_gpu_kernel_driver:-:*:*:*:*:*:*:*\"], \"vendor\": \"arm\", \"product\": \"valhall_gpu_kernel_driver\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"r28p0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:arm:midgard_gpu_kernel_driver:-:*:*:*:*:*:*:*\"], \"vendor\": \"arm\", \"product\": \"midgard_gpu_kernel_driver\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"r30p0\"}], \"defaultStatus\": \"unknown\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2021-11-03T00:00:00+00:00\", \"value\": \"CVE-2021-28663 added to CISA KEV\"}], \"references\": [{\"url\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-28663\", \"tags\": [\"government-resource\"]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-416\", \"description\": \"CWE-416 Use After Free\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-07-24T21:01:38.592Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"n/a\", \"product\": \"n/a\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"references\": [{\"url\": \"https://developer.arm.com/support/arm-security-updates\"}, {\"url\": \"https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver\"}, {\"url\": \"https://github.com/lntrx/CVE-2021-28663\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"n/a\"}]}], \"providerMetadata\": {\"orgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"shortName\": \"mitre\", \"dateUpdated\": \"2023-02-23T00:00:00.000Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2021-28663\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-10-21T23:25:46.291Z\", \"dateReserved\": \"2021-03-18T00:00:00.000Z\", \"assignerOrgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"datePublished\": \"2021-05-10T00:00:00.000Z\", \"assignerShortName\": \"mitre\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

FKIE_CVE-2021-28663

Vulnerability from fkie_nvd - Published: 2021-05-10 15:15 - Updated: 2025-11-03 15:16

Severity ?

8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
cve@mitre.org	https://developer.arm.com/support/arm-security-updates	Vendor Advisory
cve@mitre.org	https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver	Vendor Advisory
cve@mitre.org	https://github.com/lntrx/CVE-2021-28663	Exploit
af854a3a-2127-422b-91ae-364da2661108	https://developer.arm.com/support/arm-security-updates	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/lntrx/CVE-2021-28663	Exploit
134c704f-9b21-4f2e-91b3-4a467353bcc0	https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-28663	US Government Resource

Impacted products

Vendor	Product	Version
arm	bifrost_gpu_kernel_driver	*
arm	midgard_gpu_kernel_driver	*
arm	valhall_gpu_kernel_driver	*

JSON

To clipboard

{
  "cisaActionDue": "2021-11-17",
  "cisaExploitAdd": "2021-11-03",
  "cisaRequiredAction": "Apply updates per vendor instructions.",
  "cisaVulnerabilityName": "Arm Mali Graphics Processing Unit (GPU) Use-After-Free Vulnerability",
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:arm:bifrost_gpu_kernel_driver:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4A585CF-8557-4660-BD0B-EAE94D1BF8A2",
              "versionEndExcluding": "r29p0",
              "versionStartIncluding": "r0p0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:arm:midgard_gpu_kernel_driver:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6E1FE39A-BD55-4C5F-BBAA-1138340F8329",
              "versionEndExcluding": "r31p0",
              "versionStartIncluding": "r4p0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:arm:valhall_gpu_kernel_driver:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AA218DCD-3CAF-4A64-BE97-F7E4916D9C6F",
              "versionEndExcluding": "r29p0",
              "versionStartIncluding": "r19p0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0."
    },
    {
      "lang": "es",
      "value": "El controlador del kernel de Arm Mali GPU, permite una escalada de privilegios o una divulgaci\u00f3n de informaci\u00f3n porque las operaciones de la memoria de la GPU son manejadas inapropiadamente, conllevando a un uso de la memoria previamente liberada.\u0026#xa0;Esto afecta a Bifrost versiones r0p0 hasta r28p0, anteriores a r29p0, Valhall versiones r19p0 hasta r28p0 anteriores a r29p0 y Midgard versiones r4p0 hasta r30p0"
    }
  ],
  "id": "CVE-2021-28663",
  "lastModified": "2025-11-03T15:16:38.717",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2021-05-10T15:15:07.557",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://developer.arm.com/support/arm-security-updates"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "https://github.com/lntrx/CVE-2021-28663"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://developer.arm.com/support/arm-security-updates"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "https://github.com/lntrx/CVE-2021-28663"
    },
    {
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "tags": [
        "US Government Resource"
      ],
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-28663"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

GHSA-2RC2-892P-6HC2

Vulnerability from github – Published: 2022-05-24 19:01 – Updated: 2025-10-22 00:32

Details

Severity ?

8.8 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2021-28663"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-416"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2021-05-10T15:15:00Z",
    "severity": "HIGH"
  },
  "details": "The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0.",
  "id": "GHSA-2rc2-892p-6hc2",
  "modified": "2025-10-22T00:32:13Z",
  "published": "2022-05-24T19:01:54Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-28663"
    },
    {
      "type": "WEB",
      "url": "https://developer.arm.com/support/arm-security-updates"
    },
    {
      "type": "WEB",
      "url": "https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver"
    },
    {
      "type": "WEB",
      "url": "https://github.com/lntrx/CVE-2021-28663"
    },
    {
      "type": "WEB",
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-28663"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

CERTFR-2021-AVI-337

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans Android. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Google	Android	Google Android toutes versions sans le correctif du 5 mai 2021

References

Title

Publication Time

Tags

Bulletin de sécurité Pixel 2021-05-01 du 03 mai 2021	None	vendor-advisory
Bulletin de sécurité Android 2021-05-01 du 03 mai 2021	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Google Android toutes versions sans le correctif du 5 mai 2021",
      "product": {
        "name": "Android",
        "vendor": {
          "name": "Google",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2021-0485",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0485"
    },
    {
      "name": "CVE-2021-0484",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0484"
    },
    {
      "name": "CVE-2021-0466",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0466"
    },
    {
      "name": "CVE-2020-11279",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11279"
    },
    {
      "name": "CVE-2021-0324",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0324"
    },
    {
      "name": "CVE-2021-1905",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1905"
    },
    {
      "name": "CVE-2021-0473",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0473"
    },
    {
      "name": "CVE-2020-29661",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-29661"
    },
    {
      "name": "CVE-2020-27786",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-27786"
    },
    {
      "name": "CVE-2021-0491",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0491"
    },
    {
      "name": "CVE-2021-0495",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0495"
    },
    {
      "name": "CVE-2021-1910",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1910"
    },
    {
      "name": "CVE-2021-0475",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0475"
    },
    {
      "name": "CVE-2021-0494",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0494"
    },
    {
      "name": "CVE-2019-2219",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2219"
    },
    {
      "name": "CVE-2021-0496",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0496"
    },
    {
      "name": "CVE-2020-11289",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11289"
    },
    {
      "name": "CVE-2021-0472",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0472"
    },
    {
      "name": "CVE-2021-0476",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0476"
    },
    {
      "name": "CVE-2020-11285",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11285"
    },
    {
      "name": "CVE-2021-28663",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-28663"
    },
    {
      "name": "CVE-2021-0498",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0498"
    },
    {
      "name": "CVE-2021-0467",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0467"
    },
    {
      "name": "CVE-2020-25656",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-25656"
    },
    {
      "name": "CVE-2021-1906",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1906"
    },
    {
      "name": "CVE-2020-11295",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11295"
    },
    {
      "name": "CVE-2021-0480",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0480"
    },
    {
      "name": "CVE-2020-11294",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11294"
    },
    {
      "name": "CVE-2020-11284",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11284"
    },
    {
      "name": "CVE-2021-28664",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-28664"
    },
    {
      "name": "CVE-2021-0492",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0492"
    },
    {
      "name": "CVE-2021-1927",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1927"
    },
    {
      "name": "CVE-2021-0497",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0497"
    },
    {
      "name": "CVE-2021-1891",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1891"
    },
    {
      "name": "CVE-2021-0489",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0489"
    },
    {
      "name": "CVE-2021-0482",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0482"
    },
    {
      "name": "CVE-2021-0477",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0477"
    },
    {
      "name": "CVE-2020-11288",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11288"
    },
    {
      "name": "CVE-2021-0474",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0474"
    },
    {
      "name": "CVE-2021-0487",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0487"
    },
    {
      "name": "CVE-2020-11273",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11273"
    },
    {
      "name": "CVE-2020-11293",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11293"
    },
    {
      "name": "CVE-2021-0481",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0481"
    },
    {
      "name": "CVE-2021-0493",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0493"
    },
    {
      "name": "CVE-2021-1915",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1915"
    },
    {
      "name": "CVE-2021-0490",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0490"
    },
    {
      "name": "CVE-2020-11254",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11254"
    },
    {
      "name": "CVE-2020-27825",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-27825"
    },
    {
      "name": "CVE-2020-11274",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11274"
    }
  ],
  "links": [],
  "reference": "CERTFR-2021-AVI-337",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2021-05-04T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Android. Certaines\nd\u0027entre elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de\ns\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une ex\u00e9cution de code arbitraire \u00e0\ndistance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Google Android",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Pixel 2021-05-01 du 03 mai 2021",
      "url": "https://source.android.com/security/bulletin/pixel/2021-05-01"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Android 2021-05-01 du 03 mai 2021",
      "url": "https://source.android.com/security/bulletin/2021-05-01"
    }
  ]
}

CERTFR-2021-AVI-337

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Google	Android	Google Android toutes versions sans le correctif du 5 mai 2021

References

Title

Publication Time

Tags

Bulletin de sécurité Pixel 2021-05-01 du 03 mai 2021	None	vendor-advisory
Bulletin de sécurité Android 2021-05-01 du 03 mai 2021	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Google Android toutes versions sans le correctif du 5 mai 2021",
      "product": {
        "name": "Android",
        "vendor": {
          "name": "Google",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2021-0485",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0485"
    },
    {
      "name": "CVE-2021-0484",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0484"
    },
    {
      "name": "CVE-2021-0466",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0466"
    },
    {
      "name": "CVE-2020-11279",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11279"
    },
    {
      "name": "CVE-2021-0324",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0324"
    },
    {
      "name": "CVE-2021-1905",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1905"
    },
    {
      "name": "CVE-2021-0473",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0473"
    },
    {
      "name": "CVE-2020-29661",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-29661"
    },
    {
      "name": "CVE-2020-27786",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-27786"
    },
    {
      "name": "CVE-2021-0491",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0491"
    },
    {
      "name": "CVE-2021-0495",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0495"
    },
    {
      "name": "CVE-2021-1910",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1910"
    },
    {
      "name": "CVE-2021-0475",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0475"
    },
    {
      "name": "CVE-2021-0494",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0494"
    },
    {
      "name": "CVE-2019-2219",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2219"
    },
    {
      "name": "CVE-2021-0496",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0496"
    },
    {
      "name": "CVE-2020-11289",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11289"
    },
    {
      "name": "CVE-2021-0472",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0472"
    },
    {
      "name": "CVE-2021-0476",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0476"
    },
    {
      "name": "CVE-2020-11285",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11285"
    },
    {
      "name": "CVE-2021-28663",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-28663"
    },
    {
      "name": "CVE-2021-0498",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0498"
    },
    {
      "name": "CVE-2021-0467",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0467"
    },
    {
      "name": "CVE-2020-25656",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-25656"
    },
    {
      "name": "CVE-2021-1906",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1906"
    },
    {
      "name": "CVE-2020-11295",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11295"
    },
    {
      "name": "CVE-2021-0480",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0480"
    },
    {
      "name": "CVE-2020-11294",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11294"
    },
    {
      "name": "CVE-2020-11284",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11284"
    },
    {
      "name": "CVE-2021-28664",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-28664"
    },
    {
      "name": "CVE-2021-0492",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0492"
    },
    {
      "name": "CVE-2021-1927",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1927"
    },
    {
      "name": "CVE-2021-0497",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0497"
    },
    {
      "name": "CVE-2021-1891",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1891"
    },
    {
      "name": "CVE-2021-0489",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0489"
    },
    {
      "name": "CVE-2021-0482",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0482"
    },
    {
      "name": "CVE-2021-0477",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0477"
    },
    {
      "name": "CVE-2020-11288",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11288"
    },
    {
      "name": "CVE-2021-0474",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0474"
    },
    {
      "name": "CVE-2021-0487",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0487"
    },
    {
      "name": "CVE-2020-11273",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11273"
    },
    {
      "name": "CVE-2020-11293",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11293"
    },
    {
      "name": "CVE-2021-0481",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0481"
    },
    {
      "name": "CVE-2021-0493",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0493"
    },
    {
      "name": "CVE-2021-1915",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-1915"
    },
    {
      "name": "CVE-2021-0490",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-0490"
    },
    {
      "name": "CVE-2020-11254",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11254"
    },
    {
      "name": "CVE-2020-27825",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-27825"
    },
    {
      "name": "CVE-2020-11274",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11274"
    }
  ],
  "links": [],
  "reference": "CERTFR-2021-AVI-337",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2021-05-04T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Android. Certaines\nd\u0027entre elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de\ns\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une ex\u00e9cution de code arbitraire \u00e0\ndistance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Google Android",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Pixel 2021-05-01 du 03 mai 2021",
      "url": "https://source.android.com/security/bulletin/pixel/2021-05-01"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Android 2021-05-01 du 03 mai 2021",
      "url": "https://source.android.com/security/bulletin/2021-05-01"
    }
  ]
}

CNVD-2021-36598

Vulnerability from cnvd - Published: 2021-05-24

Title

Google Android资源管理错误漏洞（CNVD-2021-36598）

Description

Google Android是美国~谷歌~开放手持设备联盟（Google）的的一套以Linux为基础的开源操作系统。 Google Android存在安全漏洞，该漏洞源于ARM组件。目前没有详细的漏洞细节提供。

Severity

中

Patch Name

Google Android资源管理错误漏洞（CNVD-2021-36598）的补丁

Patch Description

Google Android是美国~谷歌~开放手持设备联盟（Google）的的一套以Linux为基础的开源操作系统。 Google Android存在安全漏洞，该漏洞源于ARM组件。目前没有详细的漏洞细节提供。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://source.android.com/security/bulletin/2021-05-01

Reference

https://developer.arm.com/support/arm-security-updates

Impacted products

Name
Google Android

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-28663"
    }
  },
  "description": "Google Android\u662f\u7f8e\u56fd~\u8c37\u6b4c~\u5f00\u653e\u624b\u6301\u8bbe\u5907\u8054\u76df\uff08Google\uff09\u7684\u7684\u4e00\u5957\u4ee5Linux\u4e3a\u57fa\u7840\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edf\u3002\n\nGoogle Android\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8eARM\u7ec4\u4ef6\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://source.android.com/security/bulletin/2021-05-01",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-36598",
  "openTime": "2021-05-24",
  "patchDescription": "Google Android\u662f\u7f8e\u56fd~\u8c37\u6b4c~\u5f00\u653e\u624b\u6301\u8bbe\u5907\u8054\u76df\uff08Google\uff09\u7684\u7684\u4e00\u5957\u4ee5Linux\u4e3a\u57fa\u7840\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edf\u3002\r\n\r\nGoogle Android\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8eARM\u7ec4\u4ef6\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Google Android\u8d44\u6e90\u7ba1\u7406\u9519\u8bef\u6f0f\u6d1e\uff08CNVD-2021-36598\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Google Android"
  },
  "referenceLink": "https://developer.arm.com/support/arm-security-updates",
  "serverity": "\u4e2d",
  "submitTime": "2021-05-21",
  "title": "Google Android\u8d44\u6e90\u7ba1\u7406\u9519\u8bef\u6f0f\u6d1e\uff08CNVD-2021-36598\uff09"
}

GSD-2021-28663

Vulnerability from gsd - Updated: 2023-12-13 01:23

Details

Aliases

CVE-2021-28663

Aliases

CVE-2021-28663

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2021-28663",
    "description": "The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0.",
    "id": "GSD-2021-28663"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2021-28663"
      ],
      "details": "The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0.",
      "id": "GSD-2021-28663",
      "modified": "2023-12-13T01:23:29.092478Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cisa.gov": {
      "cveID": "CVE-2021-28663",
      "dateAdded": "2021-11-03",
      "dueDate": "2021-11-17",
      "product": "Mali Graphics Processing Unit (GPU)",
      "requiredAction": "Apply updates per vendor instructions.",
      "shortDescription": "The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0.",
      "vendorProject": "Arm",
      "vulnerabilityName": "Arm Mali GPU Kernel Use-After-Free Vulnerability"
    },
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2021-28663",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://developer.arm.com/support/arm-security-updates",
            "refsource": "MISC",
            "url": "https://developer.arm.com/support/arm-security-updates"
          },
          {
            "name": "https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver",
            "refsource": "CONFIRM",
            "url": "https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver"
          },
          {
            "name": "https://github.com/lntrx/CVE-2021-28663",
            "refsource": "MISC",
            "url": "https://github.com/lntrx/CVE-2021-28663"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "cisaActionDue": "2021-11-17",
        "cisaExploitAdd": "2021-11-03",
        "cisaRequiredAction": "Apply updates per vendor instructions.",
        "cisaVulnerabilityName": "Arm Mali Graphics Processing Unit (GPU) Use-After-Free Vulnerability",
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:arm:bifrost_gpu_kernel_driver:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "86D3D5C7-EF1B-401B-836C-79FD7C16B5CA",
                    "versionEndIncluding": "r28p0",
                    "versionStartIncluding": "r0p0",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:arm:midgard_gpu_kernel_driver:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "C57F0AF0-BB86-41BE-B41F-951FC34878D2",
                    "versionEndIncluding": "r30p0",
                    "versionStartIncluding": "r4p0",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:arm:valhall_gpu_kernel_driver:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "3D901BF7-E72F-4BC7-96DD-FC9D87F3AE8A",
                    "versionEndIncluding": "r28p0",
                    "versionStartIncluding": "r19p0",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0."
          },
          {
            "lang": "es",
            "value": "El controlador del kernel de Arm Mali GPU, permite una escalada de privilegios o una divulgaci\u00f3n de informaci\u00f3n porque las operaciones de la memoria de la GPU son manejadas inapropiadamente, conllevando a un uso de la memoria previamente liberada.\u0026#xa0;Esto afecta a Bifrost versiones r0p0 hasta r28p0, anteriores a r29p0, Valhall versiones r19p0 hasta r28p0 anteriores a r29p0 y Midgard versiones r4p0 hasta r30p0"
          }
        ],
        "id": "CVE-2021-28663",
        "lastModified": "2023-12-13T13:51:52.563",
        "metrics": {
          "cvssMetricV2": [
            {
              "acInsufInfo": false,
              "baseSeverity": "HIGH",
              "cvssData": {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "SINGLE",
                "availabilityImpact": "COMPLETE",
                "baseScore": 9.0,
                "confidentialityImpact": "COMPLETE",
                "integrityImpact": "COMPLETE",
                "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
                "version": "2.0"
              },
              "exploitabilityScore": 8.0,
              "impactScore": 10.0,
              "obtainAllPrivilege": false,
              "obtainOtherPrivilege": false,
              "obtainUserPrivilege": false,
              "source": "nvd@nist.gov",
              "type": "Primary",
              "userInteractionRequired": false
            }
          ],
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 2.8,
              "impactScore": 5.9,
              "source": "nvd@nist.gov",
              "type": "Primary"
            }
          ]
        },
        "published": "2021-05-10T15:15:07.557",
        "references": [
          {
            "source": "cve@mitre.org",
            "tags": [
              "Vendor Advisory"
            ],
            "url": "https://developer.arm.com/support/arm-security-updates"
          },
          {
            "source": "cve@mitre.org",
            "tags": [
              "Vendor Advisory"
            ],
            "url": "https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver"
          },
          {
            "source": "cve@mitre.org",
            "url": "https://github.com/lntrx/CVE-2021-28663"
          }
        ],
        "sourceIdentifier": "cve@mitre.org",
        "vulnStatus": "Modified",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-416"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          }
        ]
      }
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2021-28663 (GCVE-0-2021-28663)

CISA Known Exploited Vulnerability

Data from the CISA Known Exploited Vulnerabilities Catalog

FKIE_CVE-2021-28663

GHSA-2RC2-892P-6HC2

CERTFR-2021-AVI-337

Solution

CERTFR-2021-AVI-337

Solution

CNVD-2021-36598

GSD-2021-28663

Tags

Sightings

Nomenclature