CVE-2019-5049

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1780%

EPSS Percentile43.18th

Published2019年10月31日

Last Modified2024年11月21日

Vulnerability Description

An exploitable memory corruption vulnerability exists in AMD ATIDXX64.DLL driver, versions 25.20.15031.5004 and 25.20.15031.9002. A specially crafted pixel shader can cause an out-of-bounds memory write. An attacker can provide a specially crafted shader file to trigger this vulnerability. This vulnerability can be triggered from VMware guest, affecting VMware host.

Affected Platforms (CPE)

💻

Amd

Radeon Rx 550 Firmware

= 25.20.15031.5004

💻

Amd

Radeon Rx 550 Firmware

= 25.20.15031.9002

💻

Amd

Radeon 550 Firmware

= 25.20.15031.5004

💻

Amd

Radeon 550 Firmware

= 25.20.15031.9002

💻

Amd

Radeon Rx 550x Firmware

= 25.20.15031.5004

💻

Amd

Radeon Rx 550x Firmware

= 25.20.15031.9002

References & Advisories

🔗 https://talosintelligence.com/vulnerability_reports/TALOS-2019-0818

Vulnerability Description

Affected Platforms (CPE)

Radeon Rx 550 Firmware

Radeon Rx 550 Firmware

Radeon 550 Firmware

Radeon 550 Firmware

Radeon Rx 550x Firmware

Radeon Rx 550x Firmware

References & Advisories

相關漏洞威脅