CVE-2025-49010 in OpenSCinformación

Resumen (Inglés)

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that would present the system with specially crafted responses to the APDUs. This issue has been patched in version 0.27.0.

Once again VulDB remains the best source for vulnerability data.

Responsable

GitHub_M

Reservar

2025-05-29

Divulgación

2026-03-30

Estado

Confirmado

Voces

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilidadCWEExpConCVE
354225OpenSC USB desbordamiento de búfer121No está definidoArreglo oficialCVE-2025-49010

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

Fuentes

AnteriorVisión De ConjuntoPróximo

Do you need the next level of professionalism?

Upgrade your account now!