Graphics ddk
This hub aggregates every CVE we track for Graphics ddk, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.
70
CVEs tracked
5
Critical
49
High
0
In CISA KEV
Severity distribution
HIGH49MEDIUM14CRITICAL5LOW2
Monthly trend
0
0
1
3
5
12
4
4
3
2
4
1
3
2
0
2
1
5
0
3
1
3
11
0
2024-082026-07
Latest CVEs
The 15 most recently published vulnerabilities affecting Graphics ddk.
- CVE-2026-45195GPU DDK - rgxfw_set_mips_fault_address(&psInit->sFaultPhysAddr) is untrusted7.8
- CVE-2026-21734GPU DDK - libusc OOB write at TreeRemove during WebGPU shader compilation7.7
- CVE-2026-41156GPU DDK - kernel<->fw CCB contains SYNC_PRIMITIVE_BLOCK firmware address without holding reference7.7
- CVE-2026-34192GPU DDK - _MMU_AllocLevel error recovery paths leave dangling page table entries7.7
- CVE-2026-41158GPU DDK - Backed sparse PMRs are not handled by deferred free mechanism after shrink7.8
- CVE-2026-41157GPU DDK - OOB Write in CalculateNPOTTwiddleSparsePageMap3D9.8
- CVE-2026-41155GPU DDK - SharedSecMem mapped into all GPU virtual address spaces5.5
- CVE-2026-34195GPU DDK - Kernel heap OOB write in PMRChangeSparseMemOSMem due to incorrect physical page translation from virtual page indexes8.8
- CVE-2026-34194GPU DDK - UAF read and/or write to arbitrary physical pages in DevmemIntChangeSparse due to incorrect calculation of the virtual index count7.1
- CVE-2026-22164GPU DDK - Kernel heap OOB write in DevmemIntComputeVirtualIndicesFromLogical7.5
- CVE-2026-34193GPU DDK - Arbitrary write via UFO updates due insufficient pointer validation in rgxfw_to_ptr()4.3
- CVE-2026-22166GPU DDK - Write UAF in KEGLGetPoolBuffers, WebGL reachable8.1
- CVE-2026-22165GPU DDK - UAF read of GLES3Context::psDrawParams and GLES3Context::psMode and UAF read/write of RMJob::apsCCBs8.1
- CVE-2026-22167GPU DDK - Cache resident PM buffers writable by other GPU requestors, leading to arbitrary write to physical memory7.8
- CVE-2026-21733GPU DDK - Incorrect flags validation in RGXDerivePTEProt8 can allow GPU to overwrite read-only shared memory (e.g. libc.so)7.3
Product normalization is registry-driven with AI assist and human review. How it works