CVE-2010-4530

🗓️ 18 Jan 2011 18:03:00Reported by ubuntu.comType

Signedness error in ccid_serial.c allows arbitrary code execution via crafted smart card with negative serial number triggering buffer overflo

Reporter	Title	Published	Views	Family All 56
BDU FSTEC	The vulnerability of the Red Hat Enterprise Linux operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	The vulnerability of the Red Hat Enterprise Linux operating system allows malicious actors to compromise the confidentiality, integrity, and accessibility of protected information.	28 Apr 201500:00	–	bdu_fstec
Tenable Nessus	CentOS 6 : ccid (CESA-2013:0523)	10 Mar 201300:00	–	nessus
Tenable Nessus	CentOS 5 : ccid (CESA-2013:1323)	12 Nov 201400:00	–	nessus
Tenable Nessus	Fedora 13 : ccid-1.3.11-2.fc13 (2011-0143)	14 Jan 201100:00	–	nessus
Tenable Nessus	Fedora 14 : ccid-1.4.0-2.fc14 (2011-0162)	14 Jan 201100:00	–	nessus
Tenable Nessus	GLSA-201401-16 : CCID: Arbitrary code execution	22 Jan 201400:00	–	nessus
Tenable Nessus	MiracleLinux 4 : ccid-1.3.9-6.AXS4 (AXSA:2013-120:01)	16 Jan 202600:00	–	nessus
Tenable Nessus	Oracle Linux 6 : ccid (ELSA-2013-0523)	12 Jul 201300:00	–	nessus
Tenable Nessus	Oracle Linux 5 : ccid (ELSA-2013-1323)	3 Oct 201300:00	–	nessus

Source	Link
labs	www.labs.mwrinfosecurity.com/files/Advisories/mwri_pcsc-libccid-buffer-overflow_2010-12-13.pdf
cve	www.cve.org/CVERecord

04 Aug 2025 19:23Current

6Medium risk

Vulners AI Score6

CVSS 24.4

EPSS0.00542