Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.7
ARM SMMU Vulnerability Allows Local Privilege Escalation
CVE-2026-0027
Summary
A bug in the ARM SMMU (Secure Monitor Mode Unit) software allows an attacker with local access to gain elevated privileges on the system. This could lead to unauthorized control over the system. To protect against this, ensure you have the latest updates installed for your ARM SMMU software.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| android | All versions | – |
Original title
In smmu_detach_dev of arm-smmu-v3.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User ...
Original description
In smmu_detach_dev of arm-smmu-v3.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.
nvd CVSS3.1
6.7
Vulnerability type
CWE-416
Use After Free
- https://android.googlesource.com/kernel/common/+/3af14d2057f2f3df97472cef6b29311... Patch Product
- https://android.googlesource.com/kernel/common/+/5161b3e75fb025bb4ebb11fbf1ac037... Patch Product
- https://android.googlesource.com/kernel/common/+/a47e0e78ad5b4e153b40fc1c9def119... Patch Product
- https://source.android.com/docs/security/bulletin/2026/2026-03-01
Published: 2 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026