Lucene search

[email protected]NVD:CVE-2020-12905

HistoryNov 15, 2021 - 8:15 p.m.

CVE-2020-12905

2021-11-1520:15:19

CWE-125

[email protected]

web.nvd.nist.gov

amd graphics driver

windows 10

out of bounds read

arbitrary information disclosure

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

Percentile

12.6%

JSON

Out of Bounds Read in AMD Graphics Driver for Windows 10 in Escape 0x3004403 may lead to arbitrary information disclosure.

Affected configurations

Nvd

Node

amdradeon_softwareRange<20.11.2

AND

microsoftwindows_10Match-

VendorProductVersionCPE
amdradeon_software*cpe:2.3:a:amd:radeon_software:*:*:*:*:*:*:*:*
microsoftwindows_10-cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
amd	radeon_software	*	cpe:2.3:a:amd:radeon_software::::::::
microsoft	windows_10	-	cpe:2.3:o:microsoft:windows_10:-:::::::*

References

www.amd.com/en/corporate/product-security/bulletin/amd-sb-1000

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

Percentile

12.6%

JSON

Related for NVD:CVE-2020-12905

prion1 cvelist1 cve1 intel1 hp1 amd1