CVE-2019-5146
First published: Sat Jan 25 2020(Updated: )
An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13025.10004. A specially crafted pixel shader can cause a denial of service. An attacker can provide a specially crafted shader file to trigger this vulnerability. This vulnerability can be triggered from VMware guest, affecting VMware host.
Credit: talos-cna@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| AMD Radeon DirectX 11 Driver | =26.20.13025.10004 | |
| VMware Workstation | =15.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2019-5146?
The severity of CVE-2019-5146 is high.
How does CVE-2019-5146 affect AMD ATIDXX64.DLL driver?
CVE-2019-5146 affects AMD ATIDXX64.DLL driver version 26.20.13025.10004.
How can CVE-2019-5146 be exploited?
CVE-2019-5146 can be exploited by providing a specially crafted pixel shader file.
Is VMware Workstation 15.0 affected by CVE-2019-5146?
No, VMware Workstation 15.0 is not affected by CVE-2019-5146.
What is the Common Weakness Enumeration (CWE) ID for CVE-2019-5146?
The CWE ID for CVE-2019-5146 is 125.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/amd
- canonical/amd radeon directx 11 driver
- version/amd radeon directx 11 driver/26.20.13025.10004
- vendor/vmware
- canonical/vmware workstation
- version/vmware workstation/15.0