CVE-2021-42778
- EPSS 2.09%
- Veröffentlicht 18.04.2022 17:15:16
- Zuletzt bearbeitet 03.11.2025 22:15:52
A heap double free issue was found in Opensc before version 0.22.0 in sc_pkcs15_free_tokeninfo.
CVE-2021-42782
- EPSS 2.68%
- Veröffentlicht 18.04.2022 17:15:16
- Zuletzt bearbeitet 03.11.2025 22:15:52
Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library.
CVE-2021-42781
- EPSS 2.81%
- Veröffentlicht 18.04.2022 17:15:16
- Zuletzt bearbeitet 03.11.2025 22:15:52
Heap buffer overflow issues were found in Opensc before version 0.22.0 in pkcs15-oberthur.c that could potentially crash programs using the library.
CVE-2021-42780
- EPSS 2.09%
- Veröffentlicht 18.04.2022 17:15:16
- Zuletzt bearbeitet 03.11.2025 22:15:52
A use after return issue was found in Opensc before version 0.22.0 in insert_pin function that could potentially crash programs using the library.
CVE-2021-42779
- EPSS 2.05%
- Veröffentlicht 18.04.2022 17:15:16
- Zuletzt bearbeitet 03.11.2025 22:15:52
A heap use after free issue was found in Opensc before version 0.22.0 in sc_file_valid.
CVE-2020-26572
- EPSS 0.4%
- Veröffentlicht 06.10.2020 02:15:13
- Zuletzt bearbeitet 21.11.2024 05:20:06
The TCOS smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in tcos_decipher.
CVE-2020-26571
- EPSS 0.4%
- Veröffentlicht 06.10.2020 02:15:13
- Zuletzt bearbeitet 21.11.2024 05:20:06
The gemsafe GPK smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in sc_pkcs15emu_gemsafeGPK_init.
CVE-2020-26570
- EPSS 0.4%
- Veröffentlicht 06.10.2020 02:15:12
- Zuletzt bearbeitet 21.11.2024 05:20:06
The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in sc_oberthur_read_file.
CVE-2019-20792
- EPSS 0.7%
- Veröffentlicht 29.04.2020 04:15:17
- Zuletzt bearbeitet 21.11.2024 04:39:22
OpenSC before 0.20.0 has a double free in coolkey_free_private_data because coolkey_add_object in libopensc/card-coolkey.c lacks a uniqueness check.
CVE-2013-1866
- EPSS 0.42%
- Veröffentlicht 30.01.2020 14:15:11
- Zuletzt bearbeitet 21.11.2024 01:50:33
OpenSC OpenSC.tokend has an Arbitrary File Creation/Overwrite Vulnerability