Lucene search

[email protected]NVD:CVE-2020-12964

HistoryNov 15, 2021 - 3:15 p.m.

CVE-2020-12964

2021-11-1515:15:06

[email protected]

web.nvd.nist.gov

amd radeon

privilege escalation

denial of service

windows bugcheck

information leak

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

12.6%

JSON

A potential privilege escalation/denial of service issue exists in the AMD Radeon Kernel Mode driver Escape 0x2000c00 Call handler. An attacker with low privilege could potentially induce a Windows BugCheck or write to leak information.

Affected configurations

Nvd

Node

amdradeon_softwareRange<20.7.1

VendorProductVersionCPE
amdradeon_software*cpe:2.3:a:amd:radeon_software:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
amd	radeon_software	*	cpe:2.3:a:amd:radeon_software::::::::

References

www.amd.com/en/corporate/product-security/bulletin/amd-sb-1000

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

12.6%

JSON

Related for NVD:CVE-2020-12964

cvelist1 prion1 cnvd1 cve1 intel1 hp1 amd1