CVE-2023-4211

CVE-2023-4211: Mali GPU Kernel Driver Allows Improper GPU Memory Processing Operations

Vendor Arm Ltd
Product Midgard GPU Kernel Driver
Weakness CWE-416
KEV Status Known Exploited
Published October 1, 2023
Last update October 21, 2025

CVSS base score

What the vulnerability does

01Description

A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory.

CISA mandated remediation

02CISA Required Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Key dates

03Disclosure timeline

October 1, 2023 CVE published
October 21, 2025 Record updated