CVE-2020-12912

MEDIUM

AMD hwmon - Privilege Escalation

Title source: llm

Description

A potential vulnerability in the AMD extension to Linux "hwmon" service may allow an attacker to use the Linux-based Running Average Power Limit (RAPL) interface to show various side channel attacks. In line with industry partners, AMD has updated the RAPL interface to require privileged access.

References (1)

[Vendor Advisory] https://www.amd.com/en/corporate/product-security

Scores

CVSS v3 5.5

EPSS 0.0084

EPSS Percentile 74.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-749 CWE-203

Status published

Products (1)

amd/energy_driver_for_linux

Published Nov 12, 2020

Tracked Since Feb 18, 2026