Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensc project opensc vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-42780
A use after return issue was found in Opensc before version 0.22.0 in insert_pin function that could potentially crash programs using the library.
Opensc Project Opensc
Fedoraproject Fedora 33
Redhat Enterprise Linux 7.0
2.1
CVSSv2
CVE-2020-26570
The Oberthur smart card software driver in OpenSC prior to 0.21.0-rc1 has a heap-based buffer overflow in sc_oberthur_read_file.
Opensc Project Opensc
Fedoraproject Fedora 33
Debian Debian Linux 9.0
2.1
CVSSv2
CVE-2020-26571
The gemsafe GPK smart card software driver in OpenSC prior to 0.21.0-rc1 has a stack-based buffer overflow in sc_pkcs15emu_gemsafeGPK_init.
Opensc Project Opensc
Debian Debian Linux 9.0
Fedoraproject Fedora 33
2.1
CVSSv2
CVE-2020-26572
The TCOS smart card software driver in OpenSC prior to 0.21.0-rc1 has a stack-based buffer overflow in tcos_decipher.
Opensc Project Opensc
Fedoraproject Fedora 33
Debian Debian Linux 9.0
4.6
CVSSv2
CVE-2019-20792
OpenSC prior to 0.20.0 has a double free in coolkey_free_private_data because coolkey_add_object in libopensc/card-coolkey.c lacks a uniqueness check.
Opensc Project Opensc
2.1
CVSSv2
CVE-2019-19479
An issue exists in OpenSC up to and including 0.19.0 and 0.20.x up to and including 0.20.0-rc3. libopensc/card-setcos.c has an incorrect read operation during parsing of a SETCOS file attribute.
Opensc Project Opensc 0.20.0
Opensc Project Opensc
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Fedoraproject Fedora 31
2.1
CVSSv2
CVE-2019-19481
An issue exists in OpenSC up to and including 0.19.0 and 0.20.x up to and including 0.20.0-rc3. libopensc/card-cac1.c mishandles buffer limits for CAC certificates.
Opensc Project Opensc 0.20.0
Opensc Project Opensc 0.19.0
5
CVSSv2
CVE-2019-16058
An issue exists in the pam_p11 component 0.2.0 and 0.3.0 for OpenSC. If a smart card creates a signature with a length longer than 256 bytes, this triggers a buffer overflow. This may be the case for RSA keys with 4096 bits depending on the signature scheme.
Opensc Project Opensc 0.3.0
Opensc Project Opensc 0.2.0
4.4
CVSSv2
CVE-2019-15945
OpenSC prior to 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decode_bit_string in libopensc/asn1.c.
Opensc Project Opensc
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Fedoraproject Fedora 31
4.4
CVSSv2
CVE-2019-15946
OpenSC prior to 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Octet string in asn1_decode_entry in libopensc/asn1.c.
Opensc Project Opensc
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Fedoraproject Fedora 31
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »