Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2019-5098

Опубликовано: 05 дек. 2019
Источник: nvd
CVSS3: 8.6
CVSS2: 5
EPSS Низкий

Описание

An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13001.29010. A specially crafted pixel shader can cause out-of-bounds memory read. An attacker can provide a specially crafted shader file to trigger this vulnerability. This vulnerability can be triggered from VMware guest, affecting VMware host.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:vmware:workstation:15.0.0:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:x64:*
Конфигурация 2

Одновременно

cpe:2.3:o:amd:radeon_rx_550_firmware:26.20.13001.29010:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_550:-:*:*:*:*:*:*:*
Конфигурация 3

Одновременно

cpe:2.3:o:amd:radeon_550_firmware:26.20.13001.29010:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_550:-:*:*:*:*:*:*:*

EPSS

Процентиль: 68%
0.0057
Низкий

8.6 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

github логотип

GHSA-69g2-j5hm-jq2w

github
больше 3 лет назад

An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13001.29010. A specially crafted pixel shader can cause out-of-bounds memory read. An attacker can provide a specially crafted shader file to trigger this vulnerability. This vulnerability can be triggered from VMware guest, affecting VMware host.

EPSS

Процентиль: 68%
0.0057
Низкий

8.6 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-125