Amd Radeon Pro Software — known CVE vulnerabilities
Every CVE whose affected-product data names Amd Radeon Pro Software, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2020-12891 — CVSS 7.8 (high): AMD Radeon Software may be vulnerable to DLL Hijacking through path variable. An unprivileged user may be able to drop its malicious DLL…
CVE-2020-12930 — CVSS 7.8 (high): Improper parameters handling in AMD Secure Processor (ASP) drivers may allow a privileged attacker to elevate their privileges potentially…
CVE-2020-12931 — CVSS 7.8 (high): Improper parameters handling in the AMD Secure Processor (ASP) kernel may allow a privileged attacker to elevate their privileges…
CVE-2020-12980 — CVSS 7.8 (high): An out of bounds write and read vulnerability in the AMD Graphics Driver for Windows 10 may lead to escalation of privilege or denial of…
CVE-2020-12981 — CVSS 7.8 (high): An insufficient input validation in the AMD Graphics Driver for Windows 10 may allow unprivileged users to unload the driver, potentially…
CVE-2020-12982 — CVSS 7.8 (high): An invalid object pointer free vulnerability in the AMD Graphics Driver for Windows 10 may lead to escalation of privilege or denial of…
CVE-2020-12983 — CVSS 7.8 (high): An out of bounds write vulnerability in the AMD Graphics Driver for Windows 10 may lead to escalation of privileges or denial of service.
CVE-2020-12985 — CVSS 7.8 (high): An insufficient pointer validation vulnerability in the AMD Graphics Driver for Windows 10 may lead to escalation of privilege or denial of…
CVE-2020-12986 — CVSS 7.8 (high): An insufficient pointer validation vulnerability in the AMD Graphics Driver for Windows 10 may cause arbitrary code execution in the…
CVE-2021-26391 — CVSS 7.8 (high): Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to…
CVE-2021-26392 — CVSS 7.8 (high): Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with…
CVE-2021-26360 — CVSS 7.8 (high): An attacker with local access to the system can make unauthorized modifications of the security configuration of the SOC registers. This…
CVE-2020-12987 — CVSS 5.5 (medium): A heap information leak/kernel pool address disclosure vulnerability in the AMD Graphics Driver for Windows 10 may lead to KASLR bypass.
CVE-2021-26393 — CVSS 5.5 (medium): Insufficient memory cleanup in the AMD Secure Processor (ASP) Trusted Execution Environment (TEE) may allow an authenticated attacker with…