CVE-2025-6573

Summary

Kernel software installed and running inside an untrusted/rich execution environment (REE) could leak information from the trusted execution environment (TEE).

Affected Software

VendorProductVersion RangeStatus
Imagination TechnologiesGraphics DDK1.15 RTMaffected
Imagination TechnologiesGraphics DDK1.17 RTMaffected
Imagination TechnologiesGraphics DDK1.18 RTMaffected
Imagination TechnologiesGraphics DDK23.2 RTM <= 24.3 RTMaffected
Imagination TechnologiesGraphics DDK25.1 RTM1unaffected

Weaknesses

  • CWE-280: CWE - CWE-280: Improper Handling of Insufficient Permissions or Privileges (4.15)

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References