Kernel software installed and running inside a Guest/Host VM may post improper commands to the GPU Firmware to trigger a write of data outside the intended GPU memory.



A logic error in the address translation allowed a compromised Host (Kernel) to perform arbitrary writes to firmware memory.