CVE-2020-12982 – This vulnerability in AMD Graphics Driver for W... (How to Fix)

Q: What is the severity of CVE-2020-12982?

CVE-2020-12982 has a CVSS score of 7.8 (HIGH). This vulnerability in AMD Graphics Driver for Windows 10 allows attackers to exploit an invalid object pointer free issue, potentially leading to privilege escalation or denial of service. It affects Windows 10 systems with vulnerable AMD graphics drivers installed.

📋 TL;DR

This vulnerability in AMD Graphics Driver for Windows 10 allows attackers to exploit an invalid object pointer free issue, potentially leading to privilege escalation or denial of service. It affects Windows 10 systems with vulnerable AMD graphics drivers installed.

💻 Affected Systems

Products:

AMD Graphics Driver

Versions: Specific vulnerable versions not specified in CVE, but affected versions prior to AMD's security update

Operating Systems: Windows 10

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects systems with AMD graphics hardware and the vulnerable driver version installed.

📦 What is this software?

Radeon Pro Software by Amd

View all CVEs affecting Radeon Pro Software →

Radeon Software by Amd

View all CVEs affecting Radeon Software →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full system compromise via privilege escalation to SYSTEM level, allowing complete control over the affected system.

🟠

Likely Case

Local privilege escalation allowing attackers to gain higher privileges than their current user account, potentially leading to persistence or lateral movement.

🟢

If Mitigated

Limited impact with proper user account controls and driver updates, potentially only causing driver crashes or system instability.

🌐 Internet-Facing: LOW - This is a local privilege escalation vulnerability requiring local access to exploit.

🏢 Internal Only: HIGH - Attackers with local access (including malware or compromised user accounts) can exploit this to gain elevated privileges.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires local access and knowledge of driver internals to exploit the pointer free vulnerability.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: AMD driver version with fix included in AMD-SB-1000 security bulletin

Vendor Advisory: https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1000

Restart Required: Yes

Instructions:

1. Visit AMD's driver download page. 2. Download latest graphics driver for your hardware. 3. Run installer and follow prompts. 4. Restart system when prompted.

🔧 Temporary Workarounds

Restrict local access

windows

Limit physical and remote local access to systems with vulnerable drivers

User Account Control enforcement

windows

Ensure UAC is enabled and running with least privilege accounts

🧯 If You Can't Patch

Implement strict access controls to prevent unauthorized local access
Monitor for suspicious driver-related activity and system crashes

🔍 How to Verify

Check if Vulnerable:

Check AMD driver version in Device Manager > Display adapters > Properties > Driver tab

Check Version:

wmic path win32_pnpsigneddriver where "DeviceName like '%AMD%'" get DeviceName, DriverVersion

Verify Fix Applied:

Verify driver version matches or exceeds version specified in AMD-SB-1000 bulletin

📡 Detection & Monitoring

Log Indicators:

Unexpected system crashes
Driver failure events in Windows Event Log
Privilege escalation attempts

Network Indicators:

Not applicable - local vulnerability

SIEM Query:

EventID=1000 OR EventID=1001 OR EventID=6008 | where ProcessName contains "amd" or Message contains "AMD"

📊 Metadata

CVE ID: CVE-2020-12982

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-763

Published: June 11, 2021

Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-12982, you might also want to check these: