CVE-2022-36397

Name of the Vulnerable Software and Affected Versions Intel(R) QAT drivers for Linux versions prior to 4.17

Description The issue is related to incorrect default permissions in the software installer for some Intel(R) QAT drivers, which may allow an authenticated user to potentially enable escalation of privilege via local access. This could allow an attacker to elevate their privileges.

Recommendations For versions prior to 4.17, update to version 4.17 or later to resolve the issue. As a temporary workaround, consider restricting access to the affected installer components to minimize the risk of exploitation.