CVE Catalog

CVE-2026-34195

HighCVSS 8.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.33%

24th percentile - higher than 24% of all known CVEs

Summary

Software running as a non-privileged user may conduct intentional GPU sparse memory API calls, leading to out of bounds write in the kernel. The product incorrectly indexes internal state when performing sparse allocation remapping.

Risk Assessment

An attacker could exploit this vulnerability to make unauthorized changes to the kernel, potentially leading to system instability or unauthorized access to resources.

Recommendation

It is recommended to update the software to the latest version to mitigate this vulnerability and to monitor the system for unauthorized activities.

Original NVD description (English source)

Software installed and run as a non-privileged user may conduct intentional GPU sparse memory API calls to cause out of bounds write in the kernel. The product incorrectly indexes internal state when performing sparse allocation remapping.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS