Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CVE
CVEadded 2026/04/23 12:27 p.m.18 views

CVE-2025-13763

CVE-2025-13763 affects OpenSC's libopensc with multiple uses of uninitialized variables, potentially allowing information disclosure or application crash. The issue requires a crafted USB device or smart card that supplies specially crafted APDUs. Reports indicate Red Hat and Fedora/OpenSUSE advi...

5.7CVSS5.7AI score0.00176EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/10 4:3 p.m.1 views

CVE-2026-35664

OpenClaw before 2026.3.25 contains an authentication bypass vulnerability in raw card send surface that allows unpaired recipients to mint legacy callback payloads. Attackers can send raw card commands to bypass DM pairing restrictions and reach callback handling without proper authorization...

6.9CVSS5.8AI score0.00276EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/04/10 4:3 p.m.3 views

CVE-2026-35664 OpenClaw < 2026.3.25 - DM Pairing Bypass via Legacy Card Callbacks

OpenClaw before 2026.3.25 contains an authentication bypass vulnerability in raw card send surface that allows unpaired recipients to mint legacy callback payloads. Attackers can send raw card commands to bypass DM pairing restrictions and reach callback handling without proper authorization...

6.9CVSS5.8AI score0.00276EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/04/06 12:0 a.m.1 views

CVE-2025-59440

An issue was discovered in USIM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Improper handling of SIM card proactive commands leads to a...

5.9AI score0.00278EPSS
Exploits0References2
OSV
OSVadded 2026/03/30 4:59 p.m.3 views

CVE-2025-49010 OpenSC: Stack-buffer-overflow WRITE in GET RESPONSE

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

3.8CVSS5.8AI score0.0013EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2024/09/04 3:14 a.m.3 views

SUSE CVE-2024-45618

A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. Insufficient or missing checking of return values of functions leads to unexpected work with variables that have...

3.9CVSS6.7AI score0.00287EPSS
Exploits0References10
SUSE CVE
SUSE CVEadded 2023/09/28 1:44 a.m.5 views

SUSE CVE-2023-40661

Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage of these flaws, an attacker must have physical access to the computer system and employ a...

5.4CVSS6.7AI score0.01174EPSS
Exploits0References6
Rows per page
Query Builder