CVE Catalog

CVE-2026-34192

HighCVSS 7.7
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.11%

2th percentile - higher than 2% of all known CVEs

Summary

CVE-2026-34192 vulnerability affects software running as a non-privileged user that may conduct improper GPU system calls, leading to an error path and use-after-free of GPU page tables.

Risk Assessment

Exploitation of this vulnerability may lead to unauthorized access to physical memory, posing a risk to system and data integrity.

Recommendation

It is recommended to update the software to the latest version and monitor applications running as non-privileged users for potential abuse.

Original NVD description (English source)

Software installed and run as a non-privileged user may conduct improper GPU system calls to cause an error path leading to UAF of GPU page tables. The vulnerability allows physical memory allocated for MMU page tables to be used after being freed. This was caused by an error path that would not cleanup properly before freeing the physical allocation.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS