VDB
DEBIAN-CVE-2024-45618
DEBIAN-CVE-2024-45618
PUBLISHED
CVSS 3.9000000953674316 LOW
A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. Insufficient or missing checking of return values of functions leads to unexpected work with variables that have not been initialized.
Risk Scores
CVSS v3.1
3.9000000953674316
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | opensc | 0, 0 |
| Debian:11 | opensc | 0.21.0-1, 0, 0.21.0-1 |
| Debian:13 | opensc | 0, 0 |
| Debian:12 | opensc | 0.23.0-0.3, 0.23.0-0.3, 0.23.0-0.3 |
Timeline
- Sep 3, 2024 CVE Published
- Apr 28, 2026 CVE Updated