A high-severity kernel-level vulnerability exists in the GPU driver, allowing a local non-privileged user to achieve arbitrary code execution with kernel-level privileges.

The vulnerability stems from incorrect indexing of internal state when performing sparse allocation remapping. A local attacker can intentionally trigger these API calls to cause an out-of-bounds write, granting them control over the kernel's execution flow.

The CVSS score of 8.8 reflects the high risk posed by kernel-level exploits. Successful exploitation allows a local user to elevate their privileges to the highest level, potentially resulting in complete system takeover, persistence, and the bypass of all OS-level security controls.

Immediate Action: Apply the latest GPU driver updates provided by the hardware vendor or system manufacturer.

Proactive Monitoring: Monitor for unexpected system crashes or unusual kernel-related errors, which may indicate attempted exploitation.

Compensating Controls: Restrict access to GPU-accelerated applications to trusted users only and enforce the principle of least privilege for all local accounts.

Public Exploit Available: false

Kernel vulnerabilities of this nature are extremely dangerous. Administrators must prioritize updating GPU drivers on all affected systems to prevent local attackers from gaining full administrative control over the underlying host.