Known Vulnerabilities for products from Opensc Project
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Opensc Project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-66215 json | OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the co... | Not Provided | 2026-03-30 | 2026-04-01 |
| CVE-2025-66038 json | OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, sc_compacttlv_find_tag searches a compact-... | Not Provided | 2026-03-30 | 2026-04-01 |
| CVE-2025-66037 json | OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, feeding a crafted input to the fuzz_pkcs15... | Not Provided | 2026-03-30 | 2026-04-01 |
| CVE-2025-49010 json | OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the co... | Not Provided | 2026-03-30 | 2026-04-01 |
| CVE-2023-40661 json | Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using ... | 6.4 - MEDIUM | 2023-11-06 | 2023-11-14 |
| CVE-2023-40660 json | A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is authenticated by one process, it ... | 6.6 - MEDIUM | 2023-11-06 | 2023-11-14 |
| CVE-2023-5992 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.9 - MEDIUM | 2024-01-31 | 2024-03-16 |
| CVE-2023-4535 json | An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling symmetric key encrypti... | 3.8 - LOW | 2023-11-06 | 2023-11-14 |
| CVE-2023-2977 json | A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardos_have_verifyrc_pa... | 7.1 - HIGH | 2023-06-01 | 2023-11-07 |
| CVE-2021-42782 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.3 - MEDIUM | 2022-04-18 | 2023-06-21 |
| CVE-2021-42781 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.3 - MEDIUM | 2022-04-18 | 2023-06-21 |
| CVE-2021-42780 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.3 - MEDIUM | 2022-04-18 | 2023-06-21 |
| CVE-2021-42779 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.3 - MEDIUM | 2022-04-18 | 2023-06-21 |
| CVE-2021-42778 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.3 - MEDIUM | 2022-04-18 | 2022-09-29 |
| CVE-2021-34193 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2023-08-22 | 2023-08-28 |
| CVE-2020-26572 json | The TCOS smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in tcos_decipher. | 5.5 - MEDIUM | 2020-10-06 | 2023-11-07 |
| CVE-2020-26571 json | The gemsafe GPK smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in sc_pkcs15emu_gems... | 5.5 - MEDIUM | 2020-10-06 | 2023-11-07 |
| CVE-2020-26570 json | The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in sc_oberthur_read_file... | 5.5 - MEDIUM | 2020-10-06 | 2023-11-07 |
| CVE-2019-20792 json | OpenSC before 0.20.0 has a double free in coolkey_free_private_data because coolkey_add_object in libopensc/card-coolkey.c la... | 6.8 - MEDIUM | 2020-04-29 | 2020-05-26 |
| CVE-2019-19481 json | An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/card-cac1.c mishandles buffer limit... | 4.6 - MEDIUM | 2019-12-01 | 2023-11-07 |
Known software with vulnerabilities from Opensc Project
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Opensc Project | Opensc | 0.12.2 |