CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-22166

A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger write UAF crash in the GPU GLES user-space shared library. On certain platforms, when the process executing graphics workload has system privileges this could enable subsequent exploit on the system.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.9%

CVSS Severity

CVSS v3 Score 8.1

References

https://www.imaginationtech.com/gpu-driver-vulnerabilities/

Products affected by CVE-2026-22166

Imaginationtech » Ddk » Version: N/A

cpe:2.3:a:imaginationtech:ddk:-
Imaginationtech » Ddk » Version: 1.15

cpe:2.3:a:imaginationtech:ddk:1.15
Imaginationtech » Ddk » Version: 1.17

cpe:2.3:a:imaginationtech:ddk:1.17
Imaginationtech » Ddk » Version: 1.18

cpe:2.3:a:imaginationtech:ddk:1.18
Imaginationtech » Ddk » Version: 23.2

cpe:2.3:a:imaginationtech:ddk:23.2
Imaginationtech » Ddk » Version: 23.3

cpe:2.3:a:imaginationtech:ddk:23.3
Imaginationtech » Ddk » Version: 24.1

cpe:2.3:a:imaginationtech:ddk:24.1
Imaginationtech » Ddk » Version: 24.2

cpe:2.3:a:imaginationtech:ddk:24.2
Imaginationtech » Ddk » Version: 24.3

cpe:2.3:a:imaginationtech:ddk:24.3
Imaginationtech » Ddk » Version: 25.1

cpe:2.3:a:imaginationtech:ddk:25.1
Imaginationtech » Ddk » Version: 25.2

cpe:2.3:a:imaginationtech:ddk:25.2
Imaginationtech » Ddk » Version: 25.3

cpe:2.3:a:imaginationtech:ddk:25.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-22166

Products

Pricing

Contact Us