Lucene search
K

50 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-2232

Malware in sbrugna...

4.9CVSS7.3AI score0.00393EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-2977

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardoshaveverifyrcpackage. The attacker can supply a smart...

7.1CVSS7.4AI score0.00295EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:16 a.m.8 views

CVE-2023-41099

In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation can occur.from a regular user to SYSTEM...

7.8CVSS6.9AI score0.00148EPSS
Exploits0
OSV
OSV
added 2024/03/22 3:15 p.m.7 views

CVE-2023-41099

In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation can occur.from a regular user to SYSTEM...

7.8CVSS5.8AI score0.00148EPSS
Exploits0References1
NVD
NVD
added 2024/03/22 3:15 p.m.22 views

CVE-2023-41099

In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation can occur.from a regular user to SYSTEM...

7.8CVSS6.5AI score0.00148EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/03/22 3:15 p.m.3 views

CVE-2023-41099

In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation can occur.from a regular user to SYSTEM...

7.8CVSS5.7AI score0.00148EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/22 12:0 a.m.6 views

Atos CardOS API 安全漏洞

Atos Eviden CardOS is a smart card specialized for the Internet of Things from Atos France. A security vulnerability exists in the Atos CardOS API prior to version 5.5.5.2811, which originates in the Windows installer, where a local privilege escalation may occur...

7.8CVSS6.7AI score0.00148EPSS
Exploits0References2
CVE
CVE
added 2024/03/22 12:0 a.m.81 views

CVE-2023-41099

CVE-2023-41099 affects the Windows installer of Atos Eviden CardOS API prior to version 5.5.5.2811, enabling local privilege escalation from a regular user to SYSTEM. The issue is documented across multiple sources (NVD, Red Hat advisory, CNNVD, CVE list) with the same description. Remediation: u...

7.8CVSS6.8AI score0.00148EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/03/22 12:0 a.m.11 views

PT-2024-12920 · Atos · Atos Eviden Cardos Api

Name of the Vulnerable Software and Affected Versions: Atos Eviden CardOS API versions prior to 5.5.5.2811 Description: The issue allows for Local Privilege Escalation, enabling an attacker to escalate privileges from a regular user to SYSTEM. This occurs in the Windows installer component of the...

7.8CVSS7.4AI score0.00148EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/03/22 12:0 a.m.20 views

CVE-2023-41099

In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation can occur.from a regular user to SYSTEM...

6.7AI score0.00148EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/22 12:0 a.m.16 views

CVE-2023-41099

In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation can occur.from a regular user to SYSTEM...

6.8AI score0.00148EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.23 views

CentOS 9 : opensc-0.23.0-2.el9

The remote CentOS Linux 9 host has a package installed that is affected by a vulnerability as referenced in the opensc-0.23.0-2.el9 build changelog. - buffer overrun in pkcs15init for cardos CVE-2023-2977 Note that Nessus has not tested for this issue but has instead relied only on the...

7.1CVSS7AI score0.00295EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/11/14 4:9 p.m.7 views

opensc: buffer overrun vulnerability in pkcs15 cardos_have_verifyrc_package

A vulnerability was found in OpenSC. This issue causes a buffer overrun in the pkcs15 cardoshaveverifyrcpackage. This flaw allows an attacker to supply a smart card package with a malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for two tags, where the remainin...

7.1CVSS6AI score0.00295EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/11/07 8:22 a.m.5 views

opensc: buffer overrun vulnerability in pkcs15 cardos_have_verifyrc_package

A vulnerability was found in OpenSC. This issue causes a buffer overrun in the pkcs15 cardoshaveverifyrcpackage. This flaw allows an attacker to supply a smart card package with a malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for two tags, where the remainin...

7.1CVSS6AI score0.00295EPSS
Exploits0References4
OSV
OSV
added 2023/06/01 1:15 a.m.2 views

DEBIAN-CVE-2023-2977

A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardoshaveverifyrcpackage. The attacker can supply a smart card package with malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for 2 tags, where remaining lengt...

7.1CVSS6.8AI score0.00295EPSS
Exploits0References1
OSV
OSV
added 2023/06/01 1:15 a.m.9 views

AZL-35073 CVE-2023-2977 affecting package opensc for versions less than 0.22.0-3

A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardoshaveverifyrcpackage. The attacker can supply a smart card package with malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for 2 tags, where remaining lengt...

7.1CVSS7AI score0.00295EPSS
Exploits0References1
OSV
OSV
added 2023/06/01 1:15 a.m.11 views

UBUNTU-CVE-2023-2977

A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardoshaveverifyrcpackage. The attacker can supply a smart card package with malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for 2 tags, where remaining lengt...

7.1CVSS7.2AI score0.00295EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/05/30 12:0 a.m.7 views

PT-2023-22410 · Opensc +7 · Opensc +7

Name of the Vulnerable Software and Affected Versions: OpenSC affected versions not specified Description: A security flaw in OpenSC causes a buffer overrun vulnerability in pkcs15 cardos have verifyrc package. An attacker can supply a smart card package with malformed ASN1 context. The cardos ha...

7.5CVSS5.6AI score0.02805EPSS
Exploits2References117
SUSE CVE
SUSE CVE
added 2023/02/15 6:8 a.m.4 views

SUSE CVE-2008-2235

OpenSC before 0.11.5 uses weak permissions ADMIN file control information of 00 for the 5015 directory on smart cards and USB crypto tokens running Siemens CardOS M4, which allows physically proximate attackers to change the PIN...

4.9CVSS6.7AI score0.00393EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2022/12/03 12:0 a.m.3 views

PT-2022-36800 · Git +1 · Opensc

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-overflow crash. Technical details about the crash include the sc pkcs15init rmdir, sc pkcs15init erase card...

6.9AI score
Exploits0References2
Rows per page
Query Builder