Lucene search
K

17 matches found

CBLMariner
CBLMariner
added 2025/09/18 3:12 p.m.5 views

CVE-2024-8443 affecting package opensc for versions less than 0.26.1-1

CVE-2024-8443 affecting package opensc for versions less than 0.26.1-1. An upgraded version of the package is available that resolves this issue...

2.9CVSS6.9AI score0.0031EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.7 views

TencentOS Server 4: opensc (TSSA-2024:0894)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0894 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

4.3CVSS6.3AI score0.00355EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-8443

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted USB device or smart card with malicious responses to the APDUs...

2.9CVSS6.7AI score0.0031EPSS
Exploits0References2
Amazon
Amazon
added 2024/12/12 12:0 a.m.10 views

Low: opensc

Issue Overview: It is caused by the libopensc library in opensc porject. This vulnerability affects how the buffer data is handled and partially filled buffers can be accessed incorrectly when a specially crafted response to APDUs in a USB device or a smart card. CVE-2024-45615 It is caused by th...

4.3CVSS7.3AI score0.00355EPSS
Exploits0
OSV
OSV
added 2024/10/03 12:3 p.m.15 views

SUSE-SU-2024:3517-1 Security update for opensc

This update for opensc fixes the following issues: - CVE-2024-45620: Incorrect handling of the length of buffers or files in pkcs15init. bsc1230076 - CVE-2024-45619: Incorrect handling length of buffers or files in libopensc. bsc1230075 - CVE-2024-45618: Uninitialized values after incorrect or...

4.3CVSS4.9AI score0.00355EPSS
Exploits0References16
OPENSUSE Linux
OPENSUSE Linux
added 2024/10/03 12:0 a.m.5 views

opensc-0.25.1-2.1 on GA media (moderate)

opensc-0.25.1-2.1 on GA media Announcement ID: openSUSE-SU-2024:14382-1 Rating: moderate Cross-References: CVE-2024-45615 CVE-2024-45616 CVE-2024-45617 CVE-2024-45618 CVE-2024-45619 CVE-2024-45620 CVE-2024-8443 CVSS scores: CVE-2024-45615 SUSE : 3.9 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L...

3.9CVSS7.5AI score0.00355EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/09/27 12:0 a.m.22 views

openSUSE Security Advisory (SUSE-SU-2024:3445-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.9AI score0.00355EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2024/09/26 12:0 a.m.32 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : opensc (SUSE-SU-2024:3444-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3444-1 advisory. - CVE-2024-45620: Incorrect handling of the length of buffers or files in pkcs15init. bsc1230076...

4.3CVSS6.1AI score0.00355EPSS
Exploits0References23
Tenable Nessus
Tenable Nessus
added 2024/09/26 12:0 a.m.37 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : opensc (SUSE-SU-2024:3445-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3445-1 advisory. - CVE-2024-45620: Incorrect handling of the length of buffers or files in pkcs15init. bsc1230076...

4.3CVSS6.1AI score0.00355EPSS
Exploits0References23
OpenVAS
OpenVAS
added 2024/09/26 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2024:3443-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.9AI score0.00355EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2024/09/26 12:0 a.m.27 views

SUSE SLES12 Security Update : opensc (SUSE-SU-2024:3443-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3443-1 advisory. - CVE-2024-45620: Incorrect handling of the length of buffers or files in pkcs15init. bsc1230076 - CVE-2024-45619: Incorrect handli...

4.3CVSS6.1AI score0.00355EPSS
Exploits0References23
OSV
OSV
added 2024/09/25 4:11 p.m.18 views

SUSE-SU-2024:3445-1 Security update for opensc

This update for opensc fixes the following issues: - CVE-2024-45620: Incorrect handling of the length of buffers or files in pkcs15init. bsc1230076 - CVE-2024-45619: Incorrect handling length of buffers or files in libopensc. bsc1230075 - CVE-2024-45618: Uninitialized values after incorrect or...

4.3CVSS4.9AI score0.00355EPSS
Exploits0References16
UbuntuCve
UbuntuCve
added 2024/09/10 2:15 p.m.6 views

CVE-2024-8443

A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted USB device or smart card with malicious responses to the APDUs during the card enrollment process using the pkcs15-init tool may lead to out-of-bound rights, possibly resulting in arbitrary code...

2.9CVSS7AI score0.0031EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/09/10 1:16 p.m.25 views

CVE-2024-8443 Libopensc: heap buffer overflow in openpgp driver when generating key

A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted USB device or smart card with malicious responses to the APDUs during the card enrollment process using the pkcs15-init tool may lead to out-of-bound rights, possibly resulting in arbitrary code...

2.9CVSS8.4AI score0.0031EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/09/10 1:16 p.m.36 views

CVE-2024-8443 Libopensc: heap buffer overflow in openpgp driver when generating key

A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted USB device or smart card with malicious responses to the APDUs during the card enrollment process using the pkcs15-init tool may lead to out-of-bound rights, possibly resulting in arbitrary code...

2.9CVSS0.0031EPSS
Exploits0References2
OSV
OSV
added 2024/09/07 5:57 a.m.2 views

BELL-CVE-2024-8443

Bulletin has no description...

2.9CVSS3.4AI score0.0031EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2024/09/06 8:10 p.m.21 views

CVE-2024-8443

A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted USB device or smart card with malicious responses to the APDUs during the card enrollment process using the pkcs15-init tool may lead to out-of-bound rights, possibly resulting in arbitrary code...

2.9CVSS4.9AI score0.0031EPSS
Exploits0References3
Rows per page
Query Builder