HIGHCVE-2026-22166Published 2026-05-01Modified 2026-05-01CNA imaginationtech

CVE-2026-22166: GPU DDK - Write UAF in KEGLGetPoolBuffers, WebGL reachable

A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger write UAF crash in the GPU GLES user-space shared library. On certain platforms, when the process executing graphics workload has system privileges this could enable subsequent exploit on the system.

CVSS v3.1: 8.1
Severity: HIGH
Fixed in: 26.1 RTM
Affected Products: 1

Fix available

26.1 RTM

Affected packages

Imagination Technologies / Graphics DDK
1.18 RTM · 23.2 RTM · ≤ 24.2 RTM · ≤ 25.3 RTM
Fixed in 26.1 RTM

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

References

imaginationtech.com

Metrics

Fix available