Vulnerabilities > Opensc Project > Opensc > 0.13.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-01 | CVE-2019-19480 | Operation on a Resource after Expiration or Release vulnerability in Opensc Project Opensc An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. | 4.6 |
| 2019-12-01 | CVE-2019-19479 | Out-of-bounds Read vulnerability in multiple products An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. | 5.5 |
| 2019-09-05 | CVE-2019-15946 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Octet string in asn1_decode_entry in libopensc/asn1.c. | 6.4 |
| 2019-09-05 | CVE-2019-15945 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decode_bit_string in libopensc/asn1.c. | 6.4 |
| 2018-09-04 | CVE-2018-16427 | Out-of-bounds Read vulnerability in Opensc Project Opensc Various out of bounds reads when handling responses in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to potentially crash the opensc library using programs. | 4.3 |
| 2018-09-04 | CVE-2018-16426 | Uncontrolled Recursion vulnerability in Opensc Project Opensc Endless recursion when handling responses from an IAS-ECC card in iasecc_select_file in libopensc/card-iasecc.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to hang or crash the opensc library using programs. | 4.3 |
| 2018-09-04 | CVE-2018-16425 | Double Free vulnerability in Opensc Project Opensc A double free when handling responses from an HSM Card in sc_pkcs15emu_sc_hsm_init in libopensc/pkcs15-sc-hsm.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service (application crash) or possibly have unspecified other impact. | 6.6 |
| 2018-09-04 | CVE-2018-16424 | Double Free vulnerability in Opensc Project Opensc A double free when handling responses in read_file in tools/egk-tool.c (aka the eGK card tool) in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service (application crash) or possibly have unspecified other impact. | 6.6 |
| 2018-09-04 | CVE-2018-16423 | Double Free vulnerability in Opensc Project Opensc A double free when handling responses from a smartcard in sc_file_set_sec_attr in libopensc/sc.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service (application crash) or possibly have unspecified other impact. | 6.6 |
| 2018-09-04 | CVE-2018-16422 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Opensc Project Opensc A single byte buffer overflow when handling responses from an esteid Card in sc_pkcs15emu_esteid_init in libopensc/pkcs15-esteid.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of service (application crash) or possibly have unspecified other impact. | 6.6 |