Arm Mali GPU Kernel Driver Use-After-Free Vulnerability (CVE-2023-4211)
Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that allows a local, non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.
A local attacker, with a low-privilege account, can achieve full data confidentiality loss. Federal agencies are required to remediate by 2023-10-24 under CISA BOD 22-01.
This is a Use After Free (CWE-416) vulnerability in Arm Mali GPU Kernel Driver. A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory. Exploitation requires local access, low attack complexity, a low-privilege authenticated account, and no user interaction required.
Probably yes if any of these apply:
CISA added this CVE to the Known Exploited Vulnerabilities catalog on 2023-10-03 based on evidence of active exploitation in the wild. Federal agencies required to remediate by 2023-10-24.
Manual remediation steps
No tested PowerShell script for this entry yet. We’re prioritising automation based on user demand.
References
Related vulnerabilities
KB5000871: Windows Server 2016 / 2019 Security Update (May 2026)
Microsoft Exchange Server
CVE-2021-26855
MEDIUM6.5Microsoft Defender for Identity Improper Authentication — Spoofing (CVE-2025-26685)
Microsoft Defender for Identity
CVE-2025-26685
HIGHIIS Security Updates Require Both Windows Update and Manual Configuration Review
Microsoft IIS