Lucene search

Redhat.comRH:CVE-2022-41808

HistoryMay 23, 2023 - 10:10 a.m.

CVE-2022-41808

2023-05-2310:10:42

redhat.com

access.redhat.com

improper buffer restriction

intel qat driver

linux kernel

denial of service

local access

mitigation

hardware vendor

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

9.1%

JSON

An improper buffer restriction flaw was found in the software for the Intel® QAT Driver for the Linux Kernel. This flaw allows an authenticated user to cause a denial of service via local access.

Mitigation

Please contact the hardware vendor for more updates.

References

bugzilla.redhat.com/show_bug.cgi?id=2209264

nvd.nist.gov/vuln/detail/CVE-2022-41808

www.cve.org/CVERecord?id=CVE-2022-41808

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00809.html

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for RH:CVE-2022-41808