Cloud Vulnerability DB
A community-led vulnerabilities database
Vulnerability DatabaseCVE-2025-6790
CVE-2025-6790:
WordPress vulnerability analysis and mitigation
Overview
A Loop with Unreachable Exit Condition (Infinite Loop) vulnerability has been identified in Arm Ltd's GPU Kernel Drivers (CVE-2024-6790), discovered on February 3, 2025. The vulnerability affects multiple GPU driver versions including Bifrost GPU Kernel Driver (r44p1, r46p0-r49p0, r50p0-r51p0), Valhall GPU Kernel Driver (r44p1, r46p0-r49p0, r50p0-r51p0), and Arm 5th Gen GPU Architecture Kernel Driver (r44p1, r46p0-r49p0, r50p0-r51p0) (Arm Security).
Technical details
The vulnerability is classified as CWE-835 (Loop with Unreachable Exit Condition) and has received a CVSS 3.1 Base Score of 4.0 (MEDIUM) with the vector string CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N. The issue allows non-privileged user processes to perform valid GPU memory processing operations through WebGL or WebGPU interfaces (NVD).
Impact
When exploited, this vulnerability can cause the entire system to become unresponsive due to an infinite loop condition triggered by GPU memory processing operations. The impact is particularly significant as it can be initiated through common web interfaces like WebGL or WebGPU (NVD).
Additional resources
Source: This report was generated using AI
Free Vulnerability Assessment
Benchmark your Cloud Security Posture
Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.
Additional Wiz resources
Get a personalized demo
Ready to see Wiz in action?
"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management