{"api_version":"1","generated_at":"2026-06-14T03:34:08+00:00","cve":"CVE-2026-41155","urls":{"html":"https://cve.report/CVE-2026-41155","api":"https://cve.report/api/cve/CVE-2026-41155.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2026-41155","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2026-41155"},"summary":{"title":"GPU DDK - SharedSecMem mapped into all GPU virtual address spaces","description":"An attacker could cooperatively pass data from one secure GPU process to another secure GPU process through shared secure memory allocations in the kernel module. Additionally, an attacker could disrupt the operation of another secure GPU process leading to image corruption / GPU hardware recovery.\n\n\n\nSharing secure memory allocations among various GPU secure processes allows an attacker to corrupt shared resource affecting other users.","state":"PUBLISHED","assigner":"imaginationtech","published_at":"2026-06-12 22:16:50","updated_at":"2026-06-12 22:16:50"},"problem_types":["CWE-653","CWE-653 CWE-653: Improper Isolation or Compartmentalization"],"metrics":[],"references":[{"url":"https://www.imaginationtech.com/gpu-driver-vulnerabilities/","name":"https://www.imaginationtech.com/gpu-driver-vulnerabilities/","refsource":"367425dc-4d06-4041-9650-c2dc6aaa27ce","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2026-41155","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-41155","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"Imagination Technologies","product":"Graphics DDK","version":"affected 1.18 RTM custom","platforms":["Linux","Android"]},{"source":"CNA","vendor":"Imagination Technologies","product":"Graphics DDK","version":"affected 23.2 RTM custom","platforms":["Linux","Android"]},{"source":"CNA","vendor":"Imagination Technologies","product":"Graphics DDK","version":"affected 24.2 RTM custom","platforms":["Linux","Android"]},{"source":"CNA","vendor":"Imagination Technologies","product":"Graphics DDK","version":"affected 25.1 RTM 25.3 RTM custom","platforms":["Linux","Android"]},{"source":"CNA","vendor":"Imagination Technologies","product":"Graphics DDK","version":"affected 26.1 RTM custom","platforms":["Linux","Android"]},{"source":"CNA","vendor":"Imagination Technologies","product":"Graphics DDK","version":"unaffected 26.2 RTM custom","platforms":["Linux","Android"]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[],"vendor_comments":[],"enrichments":{"kev":null,"epss":{"cve_year":"2026","cve_id":"41155","cve":"CVE-2026-41155","epss":"0.000180000","percentile":"0.051940000","score_date":"2026-06-13","updated_at":"2026-06-14 00:08:31"},"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"cna":{"affected":[{"defaultStatus":"unknown","platforms":["Linux","Android"],"product":"Graphics DDK","vendor":"Imagination Technologies","versions":[{"status":"affected","version":"1.18 RTM","versionType":"custom"},{"status":"affected","version":"23.2 RTM","versionType":"custom"},{"status":"affected","version":"24.2 RTM","versionType":"custom"},{"lessThanOrEqual":"25.3 RTM","status":"affected","version":"25.1 RTM","versionType":"custom"},{"status":"affected","version":"26.1 RTM","versionType":"custom"},{"status":"unaffected","version":"26.2 RTM","versionType":"custom"}]}],"descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"An attacker could cooperatively pass data from one secure GPU process to another secure GPU process through shared secure memory allocations in the kernel module. Additionally, an attacker could disrupt the operation of another secure GPU process leading to image corruption / GPU hardware recovery.\n<br>\n<br>Sharing secure memory allocations among various GPU secure processes allows an attacker to corrupt shared resource affecting other users."}],"value":"An attacker could cooperatively pass data from one secure GPU process to another secure GPU process through shared secure memory allocations in the kernel module. Additionally, an attacker could disrupt the operation of another secure GPU process leading to image corruption / GPU hardware recovery.\n\n\n\nSharing secure memory allocations among various GPU secure processes allows an attacker to corrupt shared resource affecting other users."}],"impacts":[{"capecId":"CAPEC-124","descriptions":[{"lang":"en","value":"CAPEC-124: Shared Resource Manipulation"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-653","description":"CWE-653: Improper Isolation or Compartmentalization","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2026-06-12T21:48:56.570Z","orgId":"367425dc-4d06-4041-9650-c2dc6aaa27ce","shortName":"imaginationtech"},"references":[{"url":"https://www.imaginationtech.com/gpu-driver-vulnerabilities/"}],"source":{"discovery":"UNKNOWN"},"title":"GPU DDK - SharedSecMem mapped into all GPU virtual address spaces","x_generator":{"engine":"Vulnogram 0.2.0"}}},"cveMetadata":{"assignerOrgId":"367425dc-4d06-4041-9650-c2dc6aaa27ce","assignerShortName":"imaginationtech","cveId":"CVE-2026-41155","datePublished":"2026-06-12T21:48:56.570Z","dateReserved":"2026-04-17T16:26:03.731Z","dateUpdated":"2026-06-12T21:48:56.570Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2026-06-12 22:16:50","lastModifiedDate":"2026-06-12 22:16:50","problem_types":["CWE-653","CWE-653 CWE-653: Improper Isolation or Compartmentalization"],"metrics":[],"configurations":[]},"legacy_mitre":{"record":{"CveYear":"2026","CveId":"41155","Ordinal":"1","Title":"GPU DDK - SharedSecMem mapped into all GPU virtual address space","CVE":"CVE-2026-41155","Year":"2026"},"notes":[{"CveYear":"2026","CveId":"41155","Ordinal":"1","NoteData":"An attacker could cooperatively pass data from one secure GPU process to another secure GPU process through shared secure memory allocations in the kernel module. Additionally, an attacker could disrupt the operation of another secure GPU process leading to image corruption / GPU hardware recovery.\n\n\n\nSharing secure memory allocations among various GPU secure processes allows an attacker to corrupt shared resource affecting other users.","Type":"Description","Title":"GPU DDK - SharedSecMem mapped into all GPU virtual address space"}]}}}