CVE-2026-45203
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
10/07/2026
Last modified:
10/07/2026
Description
Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigger a memory write outside the permitted range of memory for the host kernel.<br />
<br />
<br />
<br />
A TOCTOU bug existed where a malicious driver could modify values in memory after firmware validation but before use.



