Lucene search
K

4 matches found

EUVD
EUVD
added 2026/05/29 1:38 p.m.14 views

EUVD-2026-33320

OpenSC before 0.27.0, fixed in commit 0358817, contains a stack and heap buffer overrun vulnerability in the dokeyvalue function in src/pkcs15init/profile.c that allows attackers to corrupt memory by supplying a crafted profile configuration file. During pkcs15-init invocation, a key value entry...

3.8CVSS5.9AI score0.00146EPSS
Exploits0References2
CVE
CVE
added 2026/05/29 1:38 p.m.37 views

CVE-2026-40528

OpenSC prior to 0.27.0 contains a stack and heap buffer overrun in do_key_value() (src/pkcs15init/profile.c). During pkcs15-init, a key value entry starting with '=' and exceeding the size of keybuf is copied via memcpy without length checking, causing memory corruption on both stack and heap. A ...

7.8CVSS5.9AI score0.00146EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2026/05/29 1:38 p.m.12 views

CVE-2026-40528

OpenSC before 0.27.0, fixed in commit 0358817, contains a stack and heap buffer overrun vulnerability in the dokeyvalue function in src/pkcs15init/profile.c that allows attackers to corrupt memory by supplying a crafted profile configuration file. During pkcs15-init invocation, a key value entry...

7.8CVSS5.9AI score0.00146EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.15 views

PT-2026-44841

Name of the Vulnerable Software and Affected Versions OpenSC versions prior to 0.27.0 Description A stack and heap buffer overrun occurs in the do key value function within src/pkcs15init/profile.c. This issue allows memory corruption when a crafted profile configuration file is supplied. During...

7.8CVSS5.5AI score0.00146EPSS
Exploits0References25
Rows per page
Query Builder