Insufficient Input Validation in AMD Graphics Driver for Windows 10
CVE-2020-12981
7.8HIGH
Summary
The AMD Graphics Driver for Windows 10 contains a vulnerability characterized by insufficient input validation. This flaw enables unprivileged users to unload the driver, which can lead to potential memory corruption in processes that require elevated privileges. Exploiting this vulnerability may result in privilege escalation or denial of service, putting systems at significant risk.
Affected Version(s)
AMD Radeon Software Radeon Software < 20.7.1
AMD Radeon Software Radeon Pro Software for Enterprise < 21.Q2
References
CVSS V3.1
Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved