Vulnerabilities > CVE-2020-12981 - Out-of-bounds Write vulnerability in AMD Radeon PRO Software and Radeon Software

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

amd

CWE-787

NVD

Published: 2021-06-11

Updated: 2023-11-07

Summary

An insufficient input validation in the AMD Graphics Driver for Windows 10 may allow unprivileged users to unload the driver, potentially causing memory corruptions in high privileged processes, which can lead to escalation of privileges or denial of service.

Vulnerable Configurations

Part	Description	Count
Application	Amd AMD Radeon PRO Software * AMD Radeon Software -	3
OS	Microsoft Microsoft Windows 10 -	2

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1000