Lucene search
K

6 matches found

CVE
CVE
added 2026/05/29 1:26 p.m.30 views

CVE-2026-40510

CVE-2026-40510 affects OpenSC before 0.27.0-rc1. A stack buffer overflow in piv_process_history() (src/libopensc/card-piv.c) can memory-corrupt if a physically present attacker uses a crafted PIV card/USB device that returns a URL field longer than 118 bytes in the Key History Object ASN.1 respon...

6.8CVSS6AI score0.00216EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/29 1:26 p.m.10 views

CVE-2026-40510 OpenSC < 0.27.0-rc1 Stack Buffer Overflow via piv_process_history() in card-piv.c

OpenSC before 0.27.0-rc1, fixed in commit 3f24f0b, contains a stack buffer overflow vulnerability in pivprocesshistory in src/libopensc/card-piv.c that allows physically present attackers to trigger memory corruption by presenting a crafted PIV smart card or USB device returning a URL field longe...

3.8CVSS6AI score0.00216EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/29 1:26 p.m.7 views

CVE-2026-40510

OpenSC before 0.27.0-rc1, fixed in commit 3f24f0b, contains a stack buffer overflow vulnerability in pivprocesshistory in src/libopensc/card-piv.c that allows physically present attackers to trigger memory corruption by presenting a crafted PIV smart card or USB device returning a URL field longe...

3.8CVSS6AI score0.00216EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.9 views

PT-2026-44840

OpenSC before 0.27.0-rc1, fixed in commit 3f24f0b, contains a stack buffer overflow vulnerability in piv process history in src/libopensc/card-piv.c that allows physically present attackers to trigger memory corruption by presenting a crafted PIV smart card or USB device returning a URL field...

3.8CVSS6AI score0.00216EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 9:3 a.m.3 views

CVE-2024-5264

Network Transfer with AES KHT in Thales Luna EFT 2.1 and above allows a user with administrative console access to access backups taken via offline analysis...

6.5CVSS6.8AI score0.00365EPSS
Exploits0References1
Cvelist
Cvelist
added 2000/04/26 4:0 a.m.24 views

CVE-2000-0271

read-passwd and other Lisp functions in Emacs 20 do not properly clear the history of recently typed keys, which allows an attacker to read unencrypted passwords...

6.4AI score0.00336EPSS
Exploits0References2
Rows per page
Query Builder