CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-12891

AMD Radeon Software may be vulnerable to DLL Hijacking through path variable. An unprivileged user may be able to drop its malicious DLL file in any location which is in path environment variable.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 19.3%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 4.4

References

https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1000
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1000

Products affected by CVE-2020-12891

Amd » Radeon Pro Software » Version: Any

cpe:2.3:a:amd:radeon_pro_software:*
Amd » Radeon Software » Version: N/A

cpe:2.3:a:amd:radeon_software:-
Amd » Radeon Software » Version: 20.11.2

cpe:2.3:a:amd:radeon_software:20.11.2
Amd » Radeon Software » Version: 20.7.1

cpe:2.3:a:amd:radeon_software:20.7.1
Amd » Radeon Software » Version: 21.3.1

cpe:2.3:a:amd:radeon_software:21.3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-12891

Products

Pricing

Contact Us