CVE Catalog

CVE-2026-0125

HighCVSS 7.0
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.07%

0th percentile - higher than 0% of all known CVEs

Summary

In the vpu_ioctl.c files, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed.

Risk Assessment

The organization may be exposed to local privilege escalation, which could lead to unauthorized access to the system.

Recommendation

It is recommended to update the software and monitor the system for potential privilege escalation attempts.

Original NVD description (English source)

In multiple functions of vpu_ioctl.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS