PatchSiren cyber security CVE debrief
CVE-2026-41155 Imagination Technologies CVE debrief
CVE-2026-41155 is a vulnerability in an unknown vendor's GPU kernel module that allows an attacker to cooperatively pass data from one secure GPU process to another secure GPU process through shared secure memory allocations. Additionally, an attacker could disrupt the operation of another secure GPU process, leading to image corruption or GPU hardware recovery. This vulnerability affects shared resources, potentially impacting other users.
- Vendor
- Imagination Technologies
- Product
- Graphics DDK
- CVSS
- Unknown
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-12
- Original CVE updated
- 2026-06-12
- Advisory published
- 2026-06-12
- Advisory updated
- 2026-06-12
Who should care
Security teams and administrators responsible for systems utilizing GPU processes should be aware of this vulnerability.
Technical summary
The vulnerability exists in the kernel module of a GPU, enabling cooperative data passing and disruption between secure GPU processes via shared memory allocations.
Defensive priority
High
Recommended defensive actions
- Apply patches or updates from the vendor once available.
- Review and restrict access to sensitive GPU resources.
- Monitor GPU process activity for suspicious behavior.
Evidence notes
Vendor evidence suggests Imagination Technologies may be the affected vendor.
Official resources
-
CVE-2026-41155 CVE record
CVE.org
-
CVE-2026-41155 NVD detail
NVD
-
Source item URL
nvd_modified
-
Source reference
367425dc-4d06-4041-9650-c2dc6aaa27ce
CVE-2026-41155 was published on 2026-06-12T22:16:50.463Z and has not been modified since.