Vulnerability in Imagination Technologies Graphics Ddk
CVE-2026-45203
Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigger a memory write outside the permitted range of memory for the host kernel. A TOCTOU bug existed where a malicious driver cou…
Vulnerability class: TOCTOU (Time-of-Check to Time-of-Use)
Affected products
- Imagination Technologies Graphics Ddk — versions 1.18 RTM2, 23.2 RTM2, 24.2 RTM2