CVE-2026-40510 in OpenSCthông tin

Tóm tắt

Bởi MITRE • 29/05/2026

OpenSC before 0.27.0-rc1, fixed in commit 3f24f0b, contains a stack buffer overflow vulnerability in piv_process_history() in src/libopensc/card-piv.c that allows physically present attackers to trigger memory corruption by presenting a crafted PIV smart card or USB device returning a URL field longer than 118 bytes in the Key History Object ASN.1 response.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

chịu trách nhiệm

VulnCheck

Đặt trước

13/04/2026

Tiết lộ

29/05/2026

Kiểm duyệt

được chấp nhận

mục

VDB-367242

CPE

sẵn sàng

CWE

CWE-121 (Đã xác nhận)

CVSS

3.8 (CNA)

EPSS

0.00005

KEV

không

Các hoạt động

rất thấp

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-40510
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-40510
CVE Details	https://www.cvedetails.com/cve/CVE-2026-40510/

◂ Trước Tổng Quan Tiếp theo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!