O

Opensc Project Security Vulnerabilities (CVE)

Explore vulnerabilities and security advisories affecting Opensc Project products.

2 known CVE vulnerabilities tracked

Critical
0
High
0
Medium
0
Low
2
None
0

Vulnerabilities By Year

2
2026

Products Affected

Opensc 2

All Opensc Project CVEs

Recent Highest Score Oldest
CVE-2026-40528
3.8 low

OpenSC before 0.27.0, fixed in commit 0358817, contains a stack and heap buffer overrun vulnerability in the do_key_value() function in src/pkcs15init/profile.c that allows attackers to corrupt memory by supplying a crafted profile configuration file. During pkcs15-init invocation, a key value entry

Opensc May 29, 2026
CVE-2026-40510
3.8 low

OpenSC before 0.27.0-rc1, fixed in commit 3f24f0b, contains a stack buffer overflow vulnerability in piv_process_history() in src/libopensc/card-piv.c that allows physically present attackers to trigger memory corruption by presenting a crafted PIV smart card or USB device returning a URL field long

Opensc May 29, 2026