Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2026/03/31 11:29 p.m.6 views

SUSE CVE-2025-49010

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

3.8CVSS5.8AI score0.0013EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/03/31 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-66037

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, feeding a crafted input to the fuzzpkcs15reader harness causes OpenSC to...

6.8CVSS5.6AI score0.00253EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2026/03/30 6:16 p.m.2 views

CVE-2025-49010

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

6.8CVSS5.7AI score0.0013EPSS
Exploits0References1
OSV
OSV
added 2026/03/30 5:6 p.m.5 views

CVE-2025-66215 OpenSC: Stack-buffer-overflow WRITE in card-oberthur

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

3.8CVSS5.8AI score0.00159EPSS
Exploits0References6
EUVD
EUVD
added 2026/03/30 4:59 p.m.6 views

EUVD-2025-209124

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

3.8CVSS5.8AI score0.0013EPSS
Exploits0References2
Rosalinux
Rosalinux
added 2025/09/29 1:35 p.m.6 views

Advisory ROSA-SA-2025-3013

software: openscap 1.4.2 OS: ROSA-CHROME unaffected versions = openscap-1.4.2-2 affected versions openscap-1.4.2-2 CVE-ID: CVE-2024-45615 BDU-ID: 2024-11086 CVE-Crit: LOW CVE-DESC.: A vulnerability in the pkcs15-init smart card personalization utility and the libopensc library of the OpenSC smart...

3.9CVSS7AI score0.00355EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.5 views

PT-2026-29081

Name of the Vulnerable Software and Affected Versions OpenSC versions prior to 0.27.0 Description OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, providing a crafted input to the fuzz pkcs15 reader harness results in an out-of-bounds heap read within the...

6.8CVSS6AI score0.00282EPSS
Exploits2References45
BDU FSTEC
BDU FSTEC
added 2022/01/17 12:0 a.m.6 views

The vulnerability of the program tools and libraries used for working with OpenSC smart cards involves improper memory release before deleting the last pointer, allowing a malicious actor to cause a service failure.

The vulnerability of the programmatic tools and libraries used to work with OpenSC smart cards is related to improper memory release before deleting the last references. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service failures...

7.5CVSS6.4AI score0.02198EPSS
Exploits1References8Affected Software4
Rows per page
Query Builder