SARA / Free Tools / CVE / CVE-2024-3655

CVE-2024-3655 — Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valha

Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.Thi

CVSS
EPSS
11.00% (top 71.20%)
CWE
CWE-416
Published
2024-09-03T09:32:48.831Z
Last modified
2024-09-30T15:19:48.037Z
CVSS vector

01What is this vulnerability?

Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.This issue affects Bifrost GPU Kernel Driver: from r43p0 through r49p0; Valhall GPU Kernel Driver: from r43p0 through…

02Affected products

VendorProductVersions
Arm LtdBifrost GPU Kernel Driverr43p0
Arm LtdValhall GPU Kernel Driverr43p0
Arm LtdArm 5th Gen GPU Architecture Kernel Driverr43p0

03Active exploitation status

Not currently listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. EPSS is the best forward-looking signal — see the EPSS row above.

04Recommended remediation

05Technical details

For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.

06Detection signatures

Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:

Open in Sigma generator →

07Related CVEs

No directly-cited follow-up CVEs in the KB record for this advisory. The references list in section 09 carries the vendor cross-references.

08Timeline

09References

Want this in your SOAR or SIEM?
SARA's API returns EPSS, CVSS, KEV, and an analyst-grade summary in one call.
Read the API reference →
EPSS detail → Search KEV → Ask SARA →