Security Advisory

CVE-2025-58407

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-17 17:18:18

Last updated 2025-11-17 17:35:06

Assigner imaginationtech

State PUBLISHED

Description

Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware to exploit a TOCTOU race condition and trigger a read and/or write of data outside the allotted memory escaping the virtual machine.

← Browse all CVEs View on cve.org ↗