Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1438 matches found

RedhatCVE
RedhatCVEadded 2026/03/30 8:48 p.m.1 views

CVE-2025-66215

A flaw was found in OpenSC, an open-source smart card tool and middleware. An attacker with physical access to the computer can exploit this vulnerability when a user or administrator uses a smart card token. By presenting a specially crafted USB device or smart card, the attacker can trigger a...

6.8CVSS5.8AI score0.00159EPSS
Exploits0References7
OSV
OSVadded 2026/03/30 6:16 p.m.3 views

DEBIAN-CVE-2025-66215

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

6.8CVSS5AI score0.00159EPSS
Exploits0References1
OSV
OSVadded 2026/03/30 6:16 p.m.2 views

DEBIAN-CVE-2025-66038

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, sccompacttlvfindtag searches a compact-TLV buffer for a given tag. In compact-TLV, a single byte encodes the tag high nibble and value length low nibble. With a 1-byte buffer 0x0A, the encoded element claims tag=0...

6.8CVSS5.8AI score0.00282EPSS
Exploits1References1
NVD
NVDadded 2026/03/30 6:16 p.m.2 views

CVE-2025-66037

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, feeding a crafted input to the fuzzpkcs15reader harness causes OpenSC to perform an out-of-bounds heap read in the X.509/SPKI handling path. Specifically, scpkcs15pubkeyfromspkifields allocates a zero-length buffer...

6.8CVSS0.00253EPSS
Exploits1References2
NVD
NVDadded 2026/03/30 6:16 p.m.1 views

CVE-2025-66215

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

6.8CVSS0.00159EPSS
Exploits0References4
NVD
NVDadded 2026/03/30 6:16 p.m.4 views

CVE-2025-66038

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, sccompacttlvfindtag searches a compact-TLV buffer for a given tag. In compact-TLV, a single byte encodes the tag high nibble and value length low nibble. With a 1-byte buffer 0x0A, the encoded element claims tag=0...

6.8CVSS0.00282EPSS
Exploits1References3
OSV
OSVadded 2026/03/30 6:16 p.m.2 views

DEBIAN-CVE-2025-49010

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

6.8CVSS5.1AI score0.0013EPSS
Exploits0References1
NVD
NVDadded 2026/03/30 6:16 p.m.4 views

CVE-2025-49010

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

6.8CVSS0.0013EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2026/03/30 6:16 p.m.0 views

CVE-2025-49010

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

6.8CVSS5.7AI score0.0013EPSS
Exploits0References1
OSV
OSVadded 2026/03/30 6:16 p.m.0 views

UBUNTU-CVE-2025-66215

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

6.8CVSS5.7AI score0.00159EPSS
Exploits0References2
OSV
OSVadded 2026/03/30 6:16 p.m.1 views

UBUNTU-CVE-2025-66038

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, sccompacttlvfindtag searches a compact-TLV buffer for a given tag. In compact-TLV, a single byte encodes the tag high nibble and value length low nibble. With a 1-byte buffer 0x0A, the encoded element claims tag=0...

6.8CVSS5.9AI score0.00282EPSS
Exploits1References2
UbuntuCve
UbuntuCveadded 2026/03/30 6:16 p.m.1 views

CVE-2025-66037

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, feeding a crafted input to the fuzzpkcs15reader harness causes OpenSC to perform an out-of-bounds heap read in the X.509/SPKI handling path. Specifically, scpkcs15pubkeyfromspkifields allocates a zero-length buffer...

6.8CVSS5.9AI score0.00253EPSS
Exploits1References1
UbuntuCve
UbuntuCveadded 2026/03/30 6:16 p.m.3 views

CVE-2025-66038

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, sccompacttlvfindtag searches a compact-TLV buffer for a given tag. In compact-TLV, a single byte encodes the tag high nibble and value length low nibble. With a 1-byte buffer 0x0A, the encoded element claims tag=0...

6.8CVSS5.9AI score0.00282EPSS
Exploits1References1
OSV
OSVadded 2026/03/30 6:16 p.m.1 views

UBUNTU-CVE-2025-49010

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

6.8CVSS5.7AI score0.0013EPSS
Exploits0References2
OSV
OSVadded 2026/03/30 6:16 p.m.0 views

UBUNTU-CVE-2025-66037

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, feeding a crafted input to the fuzzpkcs15reader harness causes OpenSC to perform an out-of-bounds heap read in the X.509/SPKI handling path. Specifically, scpkcs15pubkeyfromspkifields allocates a zero-length buffer...

6.8CVSS5.9AI score0.00253EPSS
Exploits1References2
Debian CVE
Debian CVEadded 2026/03/30 5:6 p.m.4 views

CVE-2025-66215

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

6.8CVSS5AI score0.00159EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/03/30 5:6 p.m.2 views

CVE-2025-66215 OpenSC: Stack-buffer-overflow WRITE in card-oberthur

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

3.8CVSS5.8AI score0.00159EPSS
Exploits0References4
EUVD
EUVDadded 2026/03/30 5:6 p.m.5 views

EUVD-2025-209129

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

3.8CVSS5.8AI score0.00159EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2026/03/30 5:3 p.m.3 views

CVE-2025-66038

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, sccompacttlvfindtag searches a compact-TLV buffer for a given tag. In compact-TLV, a single byte encodes the tag high nibble and value length low nibble. With a 1-byte buffer 0x0A, the encoded element claims tag=0...

6.8CVSS5.8AI score0.00282EPSS
Exploits1
Vulnrichment
Vulnrichmentadded 2026/03/30 5:3 p.m.1 views

CVE-2025-66038 OpenSC: `sc_compacttlv_find_tag` can return out-of-bounds pointers

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, sccompacttlvfindtag searches a compact-TLV buffer for a given tag. In compact-TLV, a single byte encodes the tag high nibble and value length low nibble. With a 1-byte buffer 0x0A, the encoded element claims tag=0...

3.9CVSS5.9AI score0.00282EPSS
Exploits1References3
Rows per page
Query Builder