CVE-2020-12897

CWE-200Information Exposure3 documents3 sources
Severity
5.5MEDIUM
EPSS
0.1%
top 73.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
AMD AMD Radeon SoftwareAMD Radeon Software
Timeline
PublishedNov 15
Latest updateMay 24

Description

Kernel Pool Address disclosure in AMD Graphics Driver for Windows 10 may lead to KASLR bypass.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

NVDamd/radeon_software< 21.3.1
CVEListV5amd/amd_radeon_softwareRadeon Software21.3.1+1

🔴Vulnerability Details

2
GHSA
GHSA-635x-qhhq-x69c: Kernel Pool Address disclosure in AMD Graphics Driver for Windows 10 may lead to KASLR bypass2022-05-24
CVEList
CVE-2020-12897: Kernel Pool Address disclosure in AMD Graphics Driver for Windows 10 may lead to KASLR bypass2021-11-15
CVE-2020-12897 (MEDIUM CVSS 5.5) | Kernel Pool Address disclosure in A | cvebase.io