Lucene search

[email protected]CVE-2020-12986

HistoryJun 11, 2021 - 10:15 p.m.

CVE-2020-12986

2021-06-1122:15:00

CWE-20

[email protected]

web.nvd.nist.gov

amd

graphics driver

windows 10

cve-2020-12986

vulnerability

arbitrary code execution

kernel

privilege escalation

denial of service

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

11.7%

JSON

An insufficient pointer validation vulnerability in the AMD Graphics Driver for Windows 10 may cause arbitrary code execution in the kernel, leading to escalation of privilege or denial of service.

CPENameOperatorVersion
amd:radeon_pro_softwareamd radeon pro softwarelt21.q1
amd:radeon_softwareamd radeon softwarelt20.7.1

CPE	Name	Operator	Version
amd:radeon_pro_software	amd radeon pro software	lt	21.q1
amd:radeon_software	amd radeon software	lt	20.7.1

References

www.amd.com/en/corporate/product-security/bulletin/amd-sb-1000

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

11.7%

JSON

Related for CVE-2020-12986

prion1 intel1 hp1 amd1