← Back

CVE-2020-12987

nvd nist
Published: Jun 11, 2021Modified: Nov 21, 2024

JSON object

Loading...
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Exploitability: 1.8 / Impact: 3.6
Source: NVD

Description

A heap information leak/kernel pool address disclosure vulnerability in the AMD Graphics Driver for Windows 10 may lead to KASLR bypass.

Affected (2)

Amd
2 products
Radeon Pro Software
Radeon Software
Configuration A
2 vulnerable · 2 platform
Vulnerable SoftwareAffected Versions
Radeon Pro Software
Before 21.q1
Radeon Software
Before 20.7.1
Running on/withPlatform Versions
Microsoft
Windows 10
All versions
Microsoft
Windows 10
All versions

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (2)

Source: psirt@amd.com
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.