CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-54390

Malicious code in bioql PyPI...

4.5CVSS4.9AI score0.00237EPSS

Exploits0References9

Tenable Nessus•added 2024/07/03 12:0 a.m.•25 views

CBL Mariner 2.0 Security Update: opensc (CVE-2023-4535)

The version of opensc installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4535 advisory. - An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling...

4.5CVSS5.5AI score0.00237EPSS

Exploits0References2

Tenable Nessus•added 2024/04/26 12:0 a.m.•31 views

CentOS 9 : opensc-0.23.0-3.el9

The remote CentOS Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the opensc-0.23.0-3.el9 build changelog. - Potential PIN bypass CVE-2023-40660 - Dynamic analyzers reports in pkcs15init CVE-2023-40661 - Out-of-bounds read in MyEID driver handlin...

6.6CVSS6.1AI score0.00295EPSS

Exploits1References5

Tenable Nessus•added 2023/12/21 12:0 a.m.•39 views

Fedora 39 : opensc (2023-a854153d7a)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-a854153d7a advisory. New upstream release 2240701 with security fixes for CVE-2023-40660, CVE-2023-4535, CVE-2023-40661 Tenable has extracted the preceding description...

6.6CVSS6.1AI score0.00295EPSS

Exploits0References4

RedHat Linux•added 2023/12/19 9:53 a.m.•40 views

Moderate: Red Hat Security Advisory: opensc security update

An update for opensc is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

6.6CVSS6.5AI score0.00295EPSS

Exploits0References4

RedHat Linux•added 2023/12/19 9:53 a.m.•0 views

OpenSC: out-of-bounds read in MyEID driver handling encryption using symmetric keys

An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling symmetric key encryption. Exploiting this flaw requires an attacker to have physical access to the computer and a specially crafted USB device or smart card. This flaw allows the attacker to...

4.5CVSS5.8AI score0.00237EPSS

Exploits0References8

Oracle linux•added 2023/12/19 12:0 a.m.•36 views

opensc security update

0.23.0-3 - Fix file caching with different offsets RHEL-4079 - Fix CVE-2023-40660: Potential PIN bypass - Fix CVE-2023-40661: Dynamic analyzers reports in pkcs15init - Fix CVE-2023-4535: Out-of-bounds read in MyEID driver handling encryption using symmetric keys - Fix CVE-2023-5992: Side-channel...

6.6CVSS6.9AI score0.00295EPSS

Exploits1

Microsoft CVE•added 2023/11/16 8:0 a.m.•2 views

Opensc: out-of-bounds read in myeid driver handling encryption using symmetric keys

...

4.5CVSS5.4AI score0.00237EPSS

Exploits0

NVD•added 2023/11/06 5:15 p.m.•14 views

CVE-2023-4535

4.5CVSS4.8AI score0.00237EPSS

Exploits0References9

OSV•added 2023/11/06 5:15 p.m.•3 views

AZL-31945 CVE-2023-4535 affecting package opensc for versions less than 0.23.0-2

3.8CVSS7.1AI score0.00237EPSS

Exploits0References1

OSV•added 2023/11/06 5:15 p.m.•23 views

CVE-2023-4535

3.8CVSS3.9AI score0.00237EPSS

Exploits0References9

OSV•added 2023/11/06 5:15 p.m.•3 views

AZL-35076 CVE-2023-4535 affecting package opensc for versions less than 0.25.1-3

3.8CVSS7.1AI score0.00237EPSS

Exploits0References1

OSV•added 2023/11/06 5:15 p.m.•1 views

DEBIAN-CVE-2023-4535

3.8CVSS5.2AI score0.00237EPSS

Exploits0References1

OSV•added 2023/11/06 5:15 p.m.•1 views

UBUNTU-CVE-2023-4535

3.8CVSS7.1AI score0.00237EPSS

Exploits0References3

Prion•added 2023/11/06 5:15 p.m.•16 views

Cross site scripting

3.7CVSS6.5AI score0.00237EPSS

Exploits0References9Affected Software3

CVE•added 2023/11/06 4:57 p.m.•138 views

CVE-2023-4535

CVE-2023-4535 affects OpenSC, specifically the MyEID driver’s handling of symmetric key encryption. The vulnerability is an out-of-bounds read in the OpenSC MyEID driver, which can be exploited by a physically proximate attacker using a crafted USB device or smart card to manipulate APDU response...

4.5CVSS4.9AI score0.00237EPSS

Exploits0References9Affected Software1

AlpineLinux•added 2023/11/06 4:57 p.m.•25 views

CVE-2023-4535

4.5CVSS5.2AI score0.00237EPSS

Exploits0

Debian CVE•added 2023/11/06 4:57 p.m.•24 views

CVE-2023-4535

4.5CVSS4.5AI score0.00237EPSS

Exploits0

Cvelist•added 2023/11/06 4:57 p.m.•18 views

CVE-2023-4535 Opensc: out-of-bounds read in myeid driver handling encryption using symmetric keys

4.5CVSS5.4AI score0.00237EPSS

Exploits0References7

Positive Technologies•added 2023/11/06 12:0 a.m.•2 views

PT-2023-8907 · Opensc +4 · Opensc +4

Name of the Vulnerable Software and Affected Versions: OpenSC affected versions not specified Description: An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling symmetric key encryption. Exploiting this flaw requires an attacker to have physical...

7.1CVSS6.2AI score0.00295EPSS

Exploits1References53

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by