CVE-2021-34193
published 2023-08-22CVE-2021-34193: Stack overflow vulnerability in OpenSC smart card middleware before 0.23 via crafted responses to APDUs.
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
Stack overflow vulnerability in OpenSC smart card middleware before 0.23 via crafted responses to APDUs.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | opensc | < opensc 0.22.0-1 (bookworm) | opensc 0.22.0-1 (bookworm) |
| msrc | cbl2_opensc_0.23.0-1_on_cbl_mariner_2.0 | — | — |
| opensc_project | opensc | < 0.22.0 | 0.22.0 |
| opensc_project | opensc | >= 0 < 0.21.0-1+deb11u1 | 0.21.0-1+deb11u1 |
| opensc_project | opensc | >= 0 < 0.22.0-1 | 0.22.0-1 |
| opensc_project | opensc | >= 0 < 0.22.0-1 | 0.22.0-1 |
| opensc_project | opensc | >= 0 < 0.22.0-1 | 0.22.0-1 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH