50 matches found
EUVD-2008-2232
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2023-2977
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardoshaveverifyrcpackage. The attacker can supply a smart...
CVE-2023-41099
In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation can occur.from a regular user to SYSTEM...
CVE-2023-41099
In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation can occur.from a regular user to SYSTEM...
CVE-2023-41099
In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation can occur.from a regular user to SYSTEM...
CVE-2023-41099
In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation can occur.from a regular user to SYSTEM...
Atos CardOS API 安全漏洞
Atos Eviden CardOS is a smart card specialized for the Internet of Things from Atos France. A security vulnerability exists in the Atos CardOS API prior to version 5.5.5.2811, which originates in the Windows installer, where a local privilege escalation may occur...
CVE-2023-41099
CVE-2023-41099 affects the Windows installer of Atos Eviden CardOS API prior to version 5.5.5.2811, enabling local privilege escalation from a regular user to SYSTEM. The issue is documented across multiple sources (NVD, Red Hat advisory, CNNVD, CVE list) with the same description. Remediation: u...
PT-2024-12920 · Atos · Atos Eviden Cardos Api
Name of the Vulnerable Software and Affected Versions: Atos Eviden CardOS API versions prior to 5.5.5.2811 Description: The issue allows for Local Privilege Escalation, enabling an attacker to escalate privileges from a regular user to SYSTEM. This occurs in the Windows installer component of the...
CVE-2023-41099
In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation can occur.from a regular user to SYSTEM...
CVE-2023-41099
In the Windows installer in Atos Eviden CardOS API before 5.5.5.2811, Local Privilege Escalation can occur.from a regular user to SYSTEM...
CentOS 9 : opensc-0.23.0-2.el9
The remote CentOS Linux 9 host has a package installed that is affected by a vulnerability as referenced in the opensc-0.23.0-2.el9 build changelog. - buffer overrun in pkcs15init for cardos CVE-2023-2977 Note that Nessus has not tested for this issue but has instead relied only on the...
opensc: buffer overrun vulnerability in pkcs15 cardos_have_verifyrc_package
A vulnerability was found in OpenSC. This issue causes a buffer overrun in the pkcs15 cardoshaveverifyrcpackage. This flaw allows an attacker to supply a smart card package with a malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for two tags, where the remainin...
opensc: buffer overrun vulnerability in pkcs15 cardos_have_verifyrc_package
A vulnerability was found in OpenSC. This issue causes a buffer overrun in the pkcs15 cardoshaveverifyrcpackage. This flaw allows an attacker to supply a smart card package with a malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for two tags, where the remainin...
DEBIAN-CVE-2023-2977
A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardoshaveverifyrcpackage. The attacker can supply a smart card package with malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for 2 tags, where remaining lengt...
AZL-35073 CVE-2023-2977 affecting package opensc for versions less than 0.22.0-3
A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardoshaveverifyrcpackage. The attacker can supply a smart card package with malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for 2 tags, where remaining lengt...
UBUNTU-CVE-2023-2977
A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardoshaveverifyrcpackage. The attacker can supply a smart card package with malformed ASN1 context. The cardoshaveverifyrcpackage function scans the ASN1 buffer for 2 tags, where remaining lengt...
PT-2023-22410 · Opensc +7 · Opensc +7
Name of the Vulnerable Software and Affected Versions: OpenSC affected versions not specified Description: A security flaw in OpenSC causes a buffer overrun vulnerability in pkcs15 cardos have verifyrc package. An attacker can supply a smart card package with malformed ASN1 context. The cardos ha...
SUSE CVE-2008-2235
OpenSC before 0.11.5 uses weak permissions ADMIN file control information of 00 for the 5015 directory on smart cards and USB crypto tokens running Siemens CardOS M4, which allows physically proximate attackers to change the PIN...
PT-2022-36800 · Git +1 · Opensc
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-overflow crash. Technical details about the crash include the sc pkcs15init rmdir, sc pkcs15init erase card...