opensc (Ubuntu:Pro:18.04:LTS) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Ubuntu:Pro:18.04:LTS package opensc, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (5)
CVE-2021-34193 — CVSS 7.5 (high): Stack overflow vulnerability in OpenSC smart card middleware before 0.23 via crafted responses to APDUs.
CVE-2021-42781 — CVSS 5.3 (medium): Heap buffer overflow issues were found in Opensc before version 0.22.0 in pkcs15-oberthur.c that could potentially crash programs using the…
CVE-2023-4535 — CVSS 4.5 (medium): An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling symmetric key encryption. Exploiting…
CVE-2024-1454 — CVSS 3.4 (low): The use-after-free vulnerability was found in the AuthentIC driver in OpenSC packages, occuring in the card enrolment process using…