Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveAMDCVE-2020-12901
HistoryNov 15, 2021 - 8:15 p.m.

CVE-2020-12901

2021-11-1520:15:19
CWE-416
AMD
web.nvd.nist.gov
31
cve-2020-12901
arbitrary free after use
amd graphics driver
windows 10
kaslr bypass
information disclosure
nvd

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.5

Confidence

High

EPSS

0

Percentile

12.6%

JSON

Arbitrary Free After Use in AMD Graphics Driver for Windows 10 may lead to KASLR bypass or information disclosure.

Affected configurations

Nvd
Node
amdradeon_softwareRange<20.7.1
AND
microsoftwindows_10Match-
VendorProductVersionCPE
amdradeon_software*cpe:2.3:a:amd:radeon_software:*:*:*:*:*:*:*:*
microsoftwindows_10-cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*

CNA Affected

[
  {
    "product": "AMD Radeon Software",
    "vendor": "AMD",
    "versions": [
      {
        "lessThan": "20.11.2",
        "status": "affected",
        "version": "Radeon Software",
        "versionType": "custom"
      },
      {
        "lessThan": "21.Q2",
        "status": "affected",
        "version": "Radeon Pro Software for Enterprise",
        "versionType": "custom"
      }
    ]
  }
]

Related

cnvd 1
cvelist 1
nvd 1
prion 1
intel 1
hp 1
amd 1
cnvd
cnvd
AMD Graphics Driver Resource Management Error Vulnerability
2021-12-10 00:00:00
cvelist
cvelist
CVE-2020-12901
2021-11-15 19:20:07
nvd
nvd
CVE-2020-12901
2021-11-15 20:15:19
prion
prion
Information disclosure
2021-11-15 20:15:00
intel
intel
Intel® Core™ Processors with Radeon™ RX Vega M GL Graphics Advisory
2021-11-09 00:00:00
hp
hp
AMD® Graphics Driver November 2021 Security Updates
2021-11-09 00:00:00
amd
amd
AMD Graphics Driver for Windows 10
2021-11-09 00:00:00

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.5

Confidence

High

EPSS

0

Percentile

12.6%

JSON
Related for CVE-2020-12901
cnvd1cvelist1nvd1prion1intel1hp1amd1