Vulnerabilities > AMD
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-11 | CVE-2020-12982 | Release of Invalid Pointer or Reference vulnerability in AMD Radeon PRO Software and Radeon Software An invalid object pointer free vulnerability in the AMD Graphics Driver for Windows 10 may lead to escalation of privilege or denial of service. | 7.8 |
| 2021-06-11 | CVE-2020-12983 | Out-of-bounds Write vulnerability in AMD Radeon PRO Software and Radeon Software An out of bounds write vulnerability in the AMD Graphics Driver for Windows 10 may lead to escalation of privileges or denial of service. | 7.8 |
| 2021-06-11 | CVE-2020-12985 | Improper Input Validation vulnerability in AMD Radeon PRO Software and Radeon Software An insufficient pointer validation vulnerability in the AMD Graphics Driver for Windows 10 may lead to escalation of privilege or denial of service. | 7.8 |
| 2021-06-11 | CVE-2020-12986 | Improper Input Validation vulnerability in AMD Radeon PRO Software and Radeon Software An insufficient pointer validation vulnerability in the AMD Graphics Driver for Windows 10 may cause arbitrary code execution in the kernel, leading to escalation of privilege or denial of service. | 7.8 |
| 2021-06-11 | CVE-2020-12987 | Information Exposure vulnerability in AMD Radeon PRO Software and Radeon Software A heap information leak/kernel pool address disclosure vulnerability in the AMD Graphics Driver for Windows 10 may lead to KASLR bypass. | 5.5 |
| 2021-05-13 | CVE-2020-12967 | Command Injection vulnerability in AMD products The lack of nested page table protection in the AMD SEV/SEV-ES feature could potentially lead to arbitrary code execution within the guest VM if a malicious administrator has access to compromise the server hypervisor. | 7.2 |
| 2021-05-13 | CVE-2021-26311 | Command Injection vulnerability in AMD products In the AMD SEV/SEV-ES feature, memory can be rearranged in the guest address space that is not detected by the attestation mechanism which could be used by a malicious hypervisor to potentially lead to arbitrary code execution within the guest VM if a malicious administrator has access to compromise the server hypervisor. | 7.2 |
| 2020-11-12 | CVE-2020-12927 | Unspecified vulnerability in AMD Vbios Flash Tool Software Development KIT A potential vulnerability in a dynamically loaded AMD driver in AMD VBIOS Flash Tool SDK may allow any authenticated user to escalate privileges to NT authority system. | 7.8 |
| 2020-11-12 | CVE-2020-12926 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in AMD Trusted Platform Modules Reference The Trusted Platform Modules (TPM) reference software may not properly track the number of times a failed shutdown happens. | 6.4 |
| 2020-11-12 | CVE-2020-12912 | Information Exposure Through Discrepancy vulnerability in AMD Energy Driver for Linux A potential vulnerability in the AMD extension to Linux "hwmon" service may allow an attacker to use the Linux-based Running Average Power Limit (RAPL) interface to show various side channel attacks. | 5.5 |