CVE-2022-36397: Incorrect default permissions in the software installer for some Intel(R) QAT drivers for Linux before version 4.17 may allow an authenticated user to…

high7.8CVSS 3.1

AVLACLPRLUINSUCHIHAH

Incorrect default permissions in the software installer for some Intel(R) QAT drivers for Linux before version 4.17 may allow an authenticated user to potentially enable escalation of privilege via local access.

Affected

2 ranges

Vendor	Product	Version range	Fixed in
intel	quickassist_technology	< 1.6	1.6
intel	quickassist_technology	< 4.17	4.17

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

osv7.8HIGH