Lucene search
K

6 matches found

CNNVD
CNNVD
added 2026/04/23 12:0 a.m.11 views

OpenSC 安全漏洞

OpenSC is an open-source smart card tool and middleware developed by OpenSC. There is a security vulnerability in OpenSC, which stems from the use of uninitialized variables multiple times, potentially leading to information leaks or application crashes. The attack requires a specially crafted US...

5.7CVSS5.8AI score0.00176EPSS
Exploits0References2
CNVD
CNVD
added 2018/09/04 12:0 a.m.2 views

OpenSC Buffer Overflow Vulnerability (CNVD-2019-28624)

OpenSC is an open source smart card tool and middleware. A buffer overflow vulnerability exists in the 'readpublickey' function in the tools/cryptoflex-tool.c file in versions prior to OpenSC 0.19.0-rc1. An attacker could use this vulnerability to cause a denial of service application crash with...

6.6CVSS6.6AI score0.00692EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/04 12:0 a.m.1 views

OpenSC Double Release Vulnerability (CNVD-2019-28620)

OpenSC is an open source smart card tool and middleware. A double-release vulnerability exists in the 'scfilesetsecattr' function of the libopensc/sc.c file in versions of OpenSC prior to 0.19.0-rc1. An attacker could exploit this vulnerability to cause a denial of service application crash with...

6.6CVSS6.3AI score0.0066EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/04 12:0 a.m.2 views

OpenSC Buffer Overflow Vulnerability (CNVD-2019-28616)

OpenSC is a set of software tools and libraries for smart cards, focusing on smart cards with cryptographic capabilities. A buffer overflow vulnerability exists in utilacltostr in tools/util.c in OpenSC before 0.19.0-rc1 when handling string concatenation. An attacker could exploit this...

6.6CVSS6.9AI score0.00692EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/04 12:0 a.m.2 views

OpenSC Buffer Overflow Vulnerability (CNVD-2019-28623)

OpenSC is an open source smart card tool and middleware. A buffer overflow vulnerability exists in the 'decryptresponse' function of the libopensc/card-epass2003.c file in versions of OpenSC prior to 0.19.0-rc1. An attacker could exploit this vulnerability to cause a denial of service application...

6.6CVSS6.6AI score0.00692EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2011/01/18 6:3 p.m.16 views

CVE-2010-4530

Signedness error in ccidserial.c in libccid in the USB Chip/Smart Card Interface Devices CCID driver, as used in pcscd in PCSC-Lite 1.5.3 and possibly other products, allows physically proximate attackers to execute arbitrary code via a smart card with a crafted serial number that causes a negati...

4.4CVSS6AI score0.00542EPSS
Exploits0References2
Rows per page
Query Builder