CVE-2026-34192
HighCVSS 7.7Exploitation Probability (EPSS)
Low risk2th percentile - higher than 2% of all known CVEs
Summary
CVE-2026-34192 vulnerability affects software running as a non-privileged user that may conduct improper GPU system calls, leading to an error path and use-after-free of GPU page tables.
Risk Assessment
Exploitation of this vulnerability may lead to unauthorized access to physical memory, posing a risk to system and data integrity.
Recommendation
It is recommended to update the software to the latest version and monitor applications running as non-privileged users for potential abuse.
Original NVD description (English source)
Software installed and run as a non-privileged user may conduct improper GPU system calls to cause an error path leading to UAF of GPU page tables. The vulnerability allows physical memory allocated for MMU page tables to be used after being freed. This was caused by an error path that would not cleanup properly before freeing the physical allocation.

