Lucene search
Ubuntu.comUB:CVE-2022-36397HistoryFeb 16, 2023 - 12:00 a.m.
CVE-2022-36397
2023-02-1600:00:00
ubuntu.com
ubuntu.com
16
intel qat installer
linux
privilege escalation
local access
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.2%
Incorrect default permissions in the software installer for some Intel®
QAT drivers for Linux before version 4.17 may allow an authenticated user
to potentially enable escalation of privilege via local access.
Notes
| Author | Note |
|---|---|
| cengizcan | This affects only Intel provided installers for QAT utilities, running in userspace. This does not affect Ubuntu kernels. |
Related
cvelist
cvelist
CVE-2022-36397
2023-02-16 20:00:25
redhatcve
redhatcve
CVE-2022-36397
2023-05-23 13:40:11
prion
prion
Default configuration
2023-02-16 21:15:00
cve
cve
CVE-2022-36397
2023-02-16 21:15:13
nvd
nvd
CVE-2022-36397
2023-02-16 21:15:13
intel
intel
Intel® QAT Drivers Advisory
2023-02-14 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.2%
Related for UB:CVE-2022-36397