Vulnerabilities > AMD > Radeon Software > 20.11.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-09 | CVE-2020-12930 | Unspecified vulnerability in AMD products Improper parameters handling in AMD Secure Processor (ASP) drivers may allow a privileged attacker to elevate their privileges potentially leading to loss of integrity. | 7.8 |
| 2022-11-09 | CVE-2020-12931 | Unspecified vulnerability in AMD products Improper parameters handling in the AMD Secure Processor (ASP) kernel may allow a privileged attacker to elevate their privileges potentially leading to loss of integrity. | 7.8 |
| 2022-11-09 | CVE-2021-26360 | Unspecified vulnerability in AMD products An attacker with local access to the system can make unauthorized modifications of the security configuration of the SOC registers. | 7.8 |
| 2022-11-09 | CVE-2021-26391 | Unspecified vulnerability in AMD products Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel. | 7.8 |
| 2022-11-09 | CVE-2021-26392 | Out-of-bounds Write vulnerability in AMD products Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading a malicious TA. | 7.8 |
| 2022-11-09 | CVE-2021-26393 | Memory Leak vulnerability in AMD products Insufficient memory cleanup in the AMD Secure Processor (ASP) Trusted Execution Environment (TEE) may allow an authenticated attacker with privileges to generate a valid signed TA and potentially poison the contents of the process memory with attacker controlled data resulting in a loss of confidentiality. | 5.5 |
| 2022-02-04 | CVE-2020-12891 | Uncontrolled Search Path Element vulnerability in AMD Radeon PRO Software and Radeon Software AMD Radeon Software may be vulnerable to DLL Hijacking through path variable. | 7.8 |
| 2021-11-15 | CVE-2020-12960 | Improper Input Validation vulnerability in AMD Radeon Software 20.11.2/20.7.1/21.3.1 AMD Graphics Driver for Windows 10, amdfender.sys may improperly handle input validation on InputBuffer which may result in a denial of service (DoS). | 5.5 |
| 2021-11-15 | CVE-2020-12892 | Untrusted Search Path vulnerability in AMD Radeon Software 20.11.2/20.7.1 An untrusted search path in AMD Radeon settings Installer may lead to a privilege escalation or unauthorized code execution. | 7.8 |
| 2021-11-15 | CVE-2020-12897 | Unspecified vulnerability in AMD Radeon Software 20.11.2/20.7.1 Kernel Pool Address disclosure in AMD Graphics Driver for Windows 10 may lead to KASLR bypass. | 5.5 |