CVE-2026-34193 Imagination Technologies CVE debrief

Who should care

Organizations running virtualized environments with GPU passthrough or shared GPU access, particularly those using Imagination Technologies GPU IP. Cloud providers offering GPU-enabled VMs and enterprises with VDI (Virtual Desktop Infrastructure) deployments should prioritize assessment. Security teams monitoring for hypervisor escape or firmware compromise scenarios should include this in their threat models.

Technical summary

The vulnerability stems from a logic error in GPU address translation mechanisms. A compromised Host kernel running in a virtualized environment can craft improper commands to GPU Firmware that result in out-of-bounds writes to firmware memory rather than the intended GPU memory region. The attack requires adjacent network access (AV:A) suggesting the attacker must be on the same network segment as the target, with no authentication or user interaction needed. The integrity impact is rated Low (I:L) with no direct confidentiality or availability impact. The root cause maps to CWE-823, indicating improper pointer offset validation during address translation operations between host/kernel space and GPU firmware memory.

Defensive priority

medium

Recommended defensive actions

• Review and apply GPU driver/firmware updates from Imagination Technologies when available
• Restrict VM guest kernel access to GPU command interfaces where possible
• Monitor for anomalous GPU firmware memory access patterns in virtualized environments
• Validate GPU address translation boundaries in hypervisor configurations
• Assess exposure of GPU passthrough configurations to untrusted guest kernels

Evidence notes

Vendor attribution derived from reference domain candidate 'Imaginationtech' with low confidence; marked for review. CVE status in NVD is 'Received'. Weakness sourced from reference 367425dc-4d06-4041-9650-c2dc6aaa27ce.

Official resources