Security Advisory

CVE-2026-0112

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-10 20:46:41

Last updated 2026-03-12 03:55:27

Assigner Google_Devices

State PUBLISHED

Description

In vpu_open_inst of vpu_ioctl.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

← Browse all CVEs View on cve.org ↗