CVE-2020-12985

CWE-20 — Improper Input Validation2 documents2 sources

Severity

7.8HIGH

EPSS

0.1%

top 67.97%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

AMD AMD Radeon Software AMD Radeon PRO Software AMD Radeon Software

Timeline

PublishedJun 11

Description

An insufficient pointer validation vulnerability in the AMD Graphics Driver for Windows 10 may lead to escalation of privilege or denial of service.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

▶NVDamd/radeon_software< 20.7.1

▶CVEListV5amd/amd_radeon_softwareRadeon Software — 20.7.1+1

▶NVDamd/radeon_pro_software< 21.q1

🔴Vulnerability Details

CVEList

CVE-2020-12985: An insufficient pointer validation vulnerability in the AMD Graphics Driver for Windows 10 may lead to escalation of privilege or denial of service↗2021-06-11

▶