Vulnerabilities > AMD > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-16 | CVE-2021-26337 | Unspecified vulnerability in AMD products Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA read from invalid DRAM address to SRAM resulting in SMU not servicing further requests. | 5.5 |
| 2021-11-16 | CVE-2021-26312 | Exposure of Resource to Wrong Sphere vulnerability in AMD products Failure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) may lead an IO device to write to memory it should not be able to access, resulting in a potential loss of integrity. | 5.5 |
| 2021-11-16 | CVE-2021-26329 | Integer Overflow or Wraparound vulnerability in AMD products AMD System Management Unit (SMU) may experience an integer overflow when an invalid length is provided which may result in a potential loss of resources. | 5.5 |
| 2021-11-15 | CVE-2020-12901 | Use After Free vulnerability in AMD Radeon Software Arbitrary Free After Use in AMD Graphics Driver for Windows 10 may lead to KASLR bypass or information disclosure. | 5.5 |
| 2021-11-15 | CVE-2020-12905 | Out-of-bounds Read vulnerability in AMD Radeon Software 20.7.1 Out of Bounds Read in AMD Graphics Driver for Windows 10 in Escape 0x3004403 may lead to arbitrary information disclosure. | 5.5 |
| 2021-11-15 | CVE-2020-12960 | Improper Input Validation vulnerability in AMD Radeon Software 20.11.2/20.7.1/21.3.1 AMD Graphics Driver for Windows 10, amdfender.sys may improperly handle input validation on InputBuffer which may result in a denial of service (DoS). | 5.5 |
| 2021-11-15 | CVE-2020-12897 | Unspecified vulnerability in AMD Radeon Software 20.11.2/20.7.1 Kernel Pool Address disclosure in AMD Graphics Driver for Windows 10 may lead to KASLR bypass. | 5.5 |
| 2021-11-15 | CVE-2020-12904 | Out-of-bounds Read vulnerability in AMD Radeon Software 20.7.1 Out of Bounds Read in AMD Graphics Driver for Windows 10 in Escape 0x3004203 may lead to arbitrary information disclosure. | 5.5 |
| 2021-11-15 | CVE-2020-12920 | Unspecified vulnerability in AMD Radeon Software 20.7.1 A potential denial of service issue exists in the AMD Display driver Escape 0x130007 Call handler. | 5.5 |
| 2021-10-13 | CVE-2021-26318 | Information Exposure Through Discrepancy vulnerability in AMD products A timing and power-based side channel attack leveraging the x86 PREFETCH instructions on some AMD CPUs could potentially result in leaked kernel address space information. | 4.7 |