CVE-2021-34193
HIGHOpenSC < 0.22.0 - Stack Overflow via Crafted APDU Responses
Title source: llmDescription
Stack overflow vulnerability in OpenSC smart card middleware before 0.23 via crafted responses to APDUs.
References (13)
Core 13
Core References
Issue Tracking, Mailing List
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=27719
Issue Tracking, Mailing List
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28185
Issue Tracking, Mailing List
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28383
Issue Tracking, Mailing List
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28768
Issue Tracking, Mailing List
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28843
Issue Tracking, Mailing List
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28855
Issue Tracking, Mailing List
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=29912
Issue Tracking, Mailing List
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30112
Issue Tracking, Mailing List
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30800
Issue Tracking, Mailing List
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31448
Issue Tracking, Mailing List
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31540
Issue Tracking, Mailing List
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32149
Scores
CVSS v3
7.5
EPSS
0.0114
EPSS Percentile
62.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-787
Status
published
Products (1)
opensc_project/opensc
< 0.22.0
Published
Aug 22, 2023
Tracked Since
Feb 18, 2026