Vulnerabilities > Opensc Project > Opensc > 0.3.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-06 | CVE-2020-26571 | Out-of-bounds Write vulnerability in multiple products The gemsafe GPK smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in sc_pkcs15emu_gemsafeGPK_init. | 5.5 |
| 2020-10-06 | CVE-2020-26570 | Out-of-bounds Write vulnerability in multiple products The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in sc_oberthur_read_file. | 5.5 |
| 2020-04-29 | CVE-2019-20792 | Double Free vulnerability in Opensc Project Opensc OpenSC before 0.20.0 has a double free in coolkey_free_private_data because coolkey_add_object in libopensc/card-coolkey.c lacks a uniqueness check. | 4.6 |
| 2020-01-30 | CVE-2013-1866 | Link Following vulnerability in Opensc Project Opensc OpenSC OpenSC.tokend has an Arbitrary File Creation/Overwrite Vulnerability | 6.3 |
| 2019-12-01 | CVE-2019-19480 | Operation on a Resource after Expiration or Release vulnerability in Opensc Project Opensc An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. | 4.6 |
| 2019-12-01 | CVE-2019-19479 | Out-of-bounds Read vulnerability in multiple products An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. | 5.5 |
| 2019-09-06 | CVE-2019-16058 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Opensc Project Opensc 0.2.0/0.3.0 An issue was discovered in the pam_p11 component 0.2.0 and 0.3.0 for OpenSC. | 5.0 |
| 2019-09-05 | CVE-2019-15946 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Octet string in asn1_decode_entry in libopensc/asn1.c. | 6.4 |
| 2019-09-05 | CVE-2019-15945 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decode_bit_string in libopensc/asn1.c. | 6.4 |
| 2018-09-04 | CVE-2018-16427 | Out-of-bounds Read vulnerability in Opensc Project Opensc Various out of bounds reads when handling responses in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to potentially crash the opensc library using programs. | 2.1 |