216.73.217.80

CVE-2026-21733

· Published 17/04/2026 17:16 · Modified 17/04/2026 19:01

Labels: CVE-2026-21733 2026-04-17367425dc-4d06-4041-9650-c2dc6aaa27ceCVE-2026-21733CWE-280

Essential information

Published
17/04/2026 17:16
Modified
17/04/2026 19:01
Author
Creator
CVSS
7.3 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

CVSS metrics

Description

Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permission to read-only wrapped user-mode memory and files. This is caused by improper handling of GPU memory reservation protections.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
367425dc-4d06-4041-9650-c2dc6aaa27ce
NVD
View on NVD

Affected products (CPE)

ProductCPE
gpu / gpu driver cpe:2.3:a:gpu:gpu_driver:*:*:*:*:*:*:*:*
gpu / gpu memory management cpe:2.3:a:gpu:gpu_memory_management:*:*:*:*:*:*:*:*

References