Lucene search
K

1453 matches found

Tenable Nessus
Tenable Nessus
added 2026/07/02 12:0 a.m.4 views

SUSE SLED15 / SLES15 Security Update : opensc (SUSE-SU-2026:2697-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2697-1 advisory. This update for opensc fixes the following issues - CVE-2025-49010: stack-buffer-overflow via crafted smart ca...

7.8CVSS6.4AI score0.00296EPSS
Exploits2References19
OSV
OSV
added 2026/06/30 9:15 a.m.3 views

SUSE-SU-2026:2697-1 Security update for opensc

This update for opensc fixes the following issues - CVE-2025-49010: stack-buffer-overflow via crafted smart card or USB device responses bsc1261214. - CVE-2025-66037: crafted input can cause an out-of-bounds read bsc1261218. - CVE-2025-66038: improper compact-TLV length validation can lead to cra...

7.8CVSS6.2AI score0.00296EPSS
Exploits2References13
Tenable Nessus
Tenable Nessus
added 2026/06/30 12:0 a.m.9 views

SUSE SLES12 Security Update : opensc (SUSE-SU-2026:2678-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2678-1 advisory. This update for opensc fixes the following issues - CVE-2025-49010: stack-buffer-overflow via crafted smart card or USB device responses...

6.8CVSS6.3AI score0.00296EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/06/27 12:0 a.m.7 views

SUSE SLES15 Security Update : opensc (SUSE-SU-2026:2657-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2657-1 advisory. This update for opensc fixes the following issues - CVE-2025-49010: stack-buffer-overflow via crafted smart card or USB device...

7.8CVSS6.2AI score0.00296EPSS
Exploits2References19
OSV
OSV
added 2026/06/26 12:25 p.m.2 views

SUSE-SU-2026:2657-1 Security update for opensc

This update for opensc fixes the following issues - CVE-2025-49010: stack-buffer-overflow via crafted smart card or USB device responses bsc1261214. - CVE-2025-66037: crafted input can cause an out-of-bounds read bsc1261218. - CVE-2025-66038: improper compact-TLV length validation can lead to cra...

7.8CVSS6.2AI score0.00296EPSS
Exploits2References13
OSV
OSV
added 2026/06/24 5:41 a.m.3 views

MGASA-2026-0231 Updated opensc packages fix security vulnerabilities

These packages fix security vulnerabilities: CVE-2026-10275, A flaw has been found in OpenSC up to 0.26.1. This affects the function testkpgencertwrite of the file src/tools/pkcs11-tool.c of the component pkcs11-tool Key Generation Module. This manipulation causes buffer overflow. The attack is...

7.8CVSS5.5AI score0.00296EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/20 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-40510

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSC before 0.27.0-rc1, fixed in commit 3f24f0b, contains a stack buffer overflow vulnerability in pivprocesshistory in src/libopensc/card-piv.c that allows...

6.8CVSS6.2AI score0.00216EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.9 views

Astra Linux – Vulnerability in opensc

The Oberthur smart card software driver in OpenSC before version 0.21.0-rc1 has a heap-based buffer overflow in the scoberthurreadfile function...

5.5CVSS6.9AI score0.00398EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in opensc

Heap buffer overflow issues were identified in Opensc before version 0.22.0 in the pkcs15-oberthur.c file, which could potentially cause programs using the library to crash...

5.3CVSS6.9AI score0.02805EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in opensc

A vulnerability related to the “return issue” was discovered in Opensc before version 0.22.0. This vulnerability exists in the “insertpin” function, and it could potentially cause programs using the library to crash...

5.3CVSS6.7AI score0.02092EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in opensc

The gemsafe GPK smart card software driver in OpenSC before version 0.21.0-rc1 has a stack-based buffer overflow in the scpkcs15emugemsafeGPKinit function...

5.5CVSS7AI score0.00401EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/16 1:13 p.m.9 views

CVE-2026-10275

A flaw was found in OpenSC, specifically within the pkcs11-tool Key Generation Module. This vulnerability, located in the testkpgencertwrite function, is a buffer overflow that can be triggered remotely. A remote attacker could exploit this flaw, potentially leading to information disclosure, dat...

5.1CVSS5.7AI score0.00296EPSS
Exploits0References12
OSV
OSV
added 2026/06/15 11:42 a.m.3 views

SUSE-SU-2026:22114-1 Security update for opensc

This update for opensc fixes the following issues: - CVE-2025-49010: stack-buffer-overflow via crafted smart card or USB device responses bsc1261214. - CVE-2025-66037: crafted input can cause an out-of-bounds read bsc1261218. - CVE-2025-66038: improper compact-TLV length validation can lead to...

6.8CVSS5.2AI score0.00282EPSS
Exploits2References9
OSV
OSV
added 2026/06/15 11:42 a.m.2 views

SUSE-SU-2026:22126-1 Security update for opensc

This update for opensc fixes the following issues: - CVE-2025-49010: stack-buffer-overflow via crafted smart card or USB device responses bsc1261214. - CVE-2025-66037: crafted input can cause an out-of-bounds read bsc1261218. - CVE-2025-66038: improper compact-TLV length validation can lead to...

6.8CVSS5.3AI score0.00282EPSS
Exploits2References9
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/15 12:0 a.m.6 views

opensc-0.27.1-2.1 on GA media (moderate)

opensc-0.27.1-2.1 on GA media Announcement ID: openSUSE-SU-2026:11022-1 Rating: moderate Cross-References: CVE-2026-10275 CVE-2026-40528 CVSS scores: CVE-2026-10275 SUSE : 7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2026-10275 SUSE : 7.3...

8.5CVSS5.4AI score0.00296EPSS
Exploits0
OSV
OSV
added 2026/06/13 12:0 a.m.7 views

OPENSUSE-SU-2026:11022-1 opensc-0.27.1-2.1 on GA media

These are all security issues fixed in the opensc-0.27.1-2.1 package on the GA media of openSUSE Tumbleweed...

7.8CVSS5.4AI score0.00296EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/08 2:59 p.m.5 views

CVE-2026-40510

A flaw was found in OpenSC. A physically present attacker can exploit a stack buffer overflow vulnerability in the pivprocesshistory function by presenting a specially crafted Personal Identity Verification PIV smart card or USB device. This can lead to memory corruption within the system,...

6.8CVSS5.5AI score0.00216EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/06/08 2:59 p.m.5 views

CVE-2026-40528

A flaw was found in OpenSC. A local attacker can exploit this vulnerability by supplying a specially crafted profile configuration file to the pkcs15-init utility. This can lead to a stack and heap buffer overrun, allowing the attacker to corrupt memory. This memory corruption could potentially...

7.8CVSS5.6AI score0.00146EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2026/06/05 8:2 a.m.5 views

OpenSC pkcs11-tool Key Generation pkcs11-tool.c test_kpgen_certwrite buffer overflow

...

5.1CVSS5.8AI score0.00296EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/06/02 1:44 a.m.29 views

SUSE CVE-2026-10275

A flaw has been found in OpenSC up to 0.26.1. This affects the function testkpgencertwrite of the file src/tools/pkcs11-tool.c of the component pkcs11-tool Key Generation Module. This manipulation causes buffer overflow. The attack is possible to be carried out remotely. The complexity of an atta...

7CVSS5.5AI score0.00296EPSS
Exploits0References8
Rows per page
Query Builder