opensc (SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSS) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise High Performance Computing 15 SP1-LTSS package opensc, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (6)
CVE-2023-40660 — CVSS 6.6 (medium): A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is authenticated by one process, it can perform…
CVE-2023-40661 — CVSS 5.4 (medium): Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init…
CVE-2021-42780 — CVSS 5.3 (medium): A use after return issue was found in Opensc before version 0.22.0 in insert_pin function that could potentially crash programs using the…
CVE-2021-42781 — CVSS 5.3 (medium): Heap buffer overflow issues were found in Opensc before version 0.22.0 in pkcs15-oberthur.c that could potentially crash programs using the…
CVE-2021-42782 — CVSS 5.3 (medium): Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the…