openCryptoki 2.4.1 allows local users to create or set world-writable permissions on arbitrary files via a symlink attack on the (1) LCK..opencryptoki or (2) LCK..opencryptoki_stdll file in /var/lock/.
Exploitability
AV:LAC:HAu:NImpact
C:CI:CA:C6.2/AV:L/AC:H/Au:N/C:C/I:C/A:C