Intel Quickassist Technology vulnerabilities

CVE-2022-41808 [LOW] CWE-92 CVE-2022-41808: Improper buffer restriction in software for the Intel QAT Driver for Linux before version 1.7.l.4.12 Improper buffer restriction in software for the Intel QAT Driver for Linux before version 1.7.l.4.12 may allow an authenticated user to potentially enable denial of service via local access.

CVE-2022-21239 [MEDIUM] CWE-125 CVE-2022-21239: Out-of-bounds read in software for the Intel QAT Driver for Windows before version 1.9.0-0008 may al Out-of-bounds read in software for the Intel QAT Driver for Windows before version 1.9.0-0008 may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2022-41621 [LOW] CWE-284 CVE-2022-41621: Improper access control in some Intel(R) QAT drivers for Windows before version 1.9.0 may allow an a Improper access control in some Intel(R) QAT drivers for Windows before version 1.9.0 may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2022-41771 [MEDIUM] CWE-732 CVE-2022-41771: Incorrect permission assignment for critical resource in some Intel(R) QAT drivers for Windows befor Incorrect permission assignment for critical resource in some Intel(R) QAT drivers for Windows before version 1.9.0 may allow an authenticated user to potentially enable information disclosure via local access.

CVE-2022-36397 [HIGH] CWE-276 CVE-2022-36397: Incorrect default permissions in the software installer for some Intel(R) QAT drivers for Linux befo Incorrect default permissions in the software installer for some Intel(R) QAT drivers for Linux before version 4.17 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2022-37340 [MEDIUM] CWE-427 CVE-2022-37340: Uncontrolled search path in some Intel(R) QAT drivers for Windows before version 1.6 may allow an au Uncontrolled search path in some Intel(R) QAT drivers for Windows before version 1.6 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2020-12333 [HIGH] CWE-522 CVE-2020-12333: Insufficiently protected credentials in the Intel(R) QAT for Linux before version 1.7.l.4.10.0 may a Insufficiently protected credentials in the Intel(R) QAT for Linux before version 1.7.l.4.10.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2018-12193 [MEDIUM] CVE-2018-12193: Insufficient access control in driver stack for Intel QuickAssist Technology for Linux before versio Insufficient access control in driver stack for Intel QuickAssist Technology for Linux before version 4.2 may allow an unprivileged user to potentially disclose information via local access.