CVE-2020-12980 — Out-of-bounds Read in AMD Radeon Software

CWE-125 — Out-of-bounds Read CWE-787 — Out-of-bounds Write2 documents2 sources

Severity

7.8HIGHNVD

EPSS

0.1%

top 67.94%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

AMD Radeon Software AMD Radeon PRO Software AMD Radeon Software

Timeline

PublishedJun 11

Description

An out of bounds write and read vulnerability in the AMD Graphics Driver for Windows 10 may lead to escalation of privilege or denial of service.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

▶NVDamd/radeon_software< 20.7.1

▶CVEListV5amd/amd_radeon_softwareRadeon Software — 20.7.1+1

▶NVDamd/radeon_pro_software< 21.q1

🔴Vulnerability Details

CVEList

CVE-2020-12980: An out of bounds write and read vulnerability in the AMD Graphics Driver for Windows 10 may lead to escalation of privilege or denial of service↗2021-06-11

▶