Vulnerabilities > AMD > Radeon Software > 20.11.2

DATE CVE VULNERABILITY TITLE RISK
2022-11-09 CVE-2020-12930 Unspecified vulnerability in AMD products
Improper parameters handling in AMD Secure Processor (ASP) drivers may allow a privileged attacker to elevate their privileges potentially leading to loss of integrity.
local
low complexity
amd
7.8
2022-11-09 CVE-2020-12931 Unspecified vulnerability in AMD products
Improper parameters handling in the AMD Secure Processor (ASP) kernel may allow a privileged attacker to elevate their privileges potentially leading to loss of integrity.
local
low complexity
amd
7.8
2022-11-09 CVE-2021-26360 Unspecified vulnerability in AMD products
An attacker with local access to the system can make unauthorized modifications of the security configuration of the SOC registers.
local
low complexity
amd
7.8
2022-11-09 CVE-2021-26391 Unspecified vulnerability in AMD products
Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel.
local
low complexity
amd
7.8
2022-11-09 CVE-2021-26392 Out-of-bounds Write vulnerability in AMD products
Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading a malicious TA.
local
low complexity
amd CWE-787
7.8
2022-11-09 CVE-2021-26393 Memory Leak vulnerability in AMD products
Insufficient memory cleanup in the AMD Secure Processor (ASP) Trusted Execution Environment (TEE) may allow an authenticated attacker with privileges to generate a valid signed TA and potentially poison the contents of the process memory with attacker controlled data resulting in a loss of confidentiality.
local
low complexity
amd CWE-401
5.5
2022-02-04 CVE-2020-12891 Uncontrolled Search Path Element vulnerability in AMD Radeon PRO Software and Radeon Software
AMD Radeon Software may be vulnerable to DLL Hijacking through path variable.
local
amd CWE-427
4.4
2021-11-15 CVE-2020-12960 Improper Input Validation vulnerability in AMD Radeon Software 20.11.2/20.7.1/21.3.1
AMD Graphics Driver for Windows 10, amdfender.sys may improperly handle input validation on InputBuffer which may result in a denial of service (DoS).
local
low complexity
amd CWE-20
2.1
2021-11-15 CVE-2020-12892 Untrusted Search Path vulnerability in AMD Radeon Software 20.11.2/20.7.1
An untrusted search path in AMD Radeon settings Installer may lead to a privilege escalation or unauthorized code execution.
local
amd CWE-426
4.4
2021-11-15 CVE-2020-12897 Information Exposure vulnerability in AMD Radeon Software 20.11.2/20.7.1
Kernel Pool Address disclosure in AMD Graphics Driver for Windows 10 may lead to KASLR bypass.
local
low complexity
amd CWE-200
2.1