Cybersecurity

New Rowhammer Attack Exposes NVIDIA GPUs to Full System Control

By Sentinel News Editorial Team

May 10, 2026 Source: Schneier 13 views

A novel Rowhammer exploit has emerged, specifically targeting NVIDIA graphics processing units (GPUs) and potentially granting adversaries full command over host systems. This development extends the well-understood Rowhammer vulnerability from central processing units into a new, critical hardware domain.

Research highlights a new exploit method against NVIDIA's Ampere generation GPUs.
The technique achieves memory bitflips within the graphics double data rate (GDDR) memory, enabling complete system takeover.
This vulnerability is effective when input-output memory management units (IOMMU) are inactive, which is often the default setting in system BIOS.

Intelligence briefing: Why this matters: For IT security professionals and military analysts, this vulnerability signals a critical hardware-level exploit vector, potentially bypassing conventional software defenses and impacting a wide range of systems employing NVIDIA GPUs with default configurations.

A new <a href="https://en.wikipedia.org/wiki/Row_hammer">rowhammer</a> attack gives <a href="https://arstechnica.com/security/2026/04/new-rowhammer-attacks-give-complete-control-of-machines-running-nvidia-gpus/">complete control</a> of NVIDIA CPUs.

<blockquote>On Thursday, two research teams, working independently of each other, demonstrated attacks against two cards from Nvidia’s Ampere generation that take GPU rowhammering into new—and potentially much more consequential—territory: GDDR bitflips that give adversaries full control of CPU memory, resulting in full system compromise of the host machine. For the attack to work, <a href="https://en.wikipedia.org/wiki/Input-output_memory_management_unit">IOMMU</a> memory management must be disabled, as is the default in BIOS settings.

“Our work shows that Rowhammer, which is well-studied on CPUs, is a serious threat on GPUs as well,” said Andrew Kwong, co-author of one of the papers. “...</blockquote>

Analysis

This research significantly shifts the landscape of hardware-level exploitation, demonstrating that fundamental memory vulnerabilities can manifest across diverse chip architectures. It underscores an urgent need for organizations to reassess system configurations beyond software patches, particularly in environments utilizing high-performance GPUs for sensitive operations. The findings emphasize that sophisticated adversaries now have a proven path to system control by targeting foundational hardware components, challenging conventional defense strategies.

rowhammernvidiagpu securityhardware exploitscyber warfarememory attackssystem compromise

📰 Primary Source: Schneier

Free Weekly Intel Digest

Top 5 defense & cybersecurity briefings every Sunday. Free, no spam, unsubscribe anytime.

Readers from 5+ countries already subscribed