漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
OpenSC: Stack-buffer-overflow WRITE in GET RESPONSE
Vulnerability Description
OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that would present the system with specially crafted responses to the APDUs. This issue has been patched in version 0.27.0.
CVSS Information
CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
OpenSC 安全漏洞
Vulnerability Description
OpenSC是OpenSC开源的一款开源的智能卡工具和中间件。 OpenSC 0.27.0之前版本存在安全漏洞,该漏洞源于GET RESPONSE中存在栈缓冲区溢出写入,可能导致具有物理访问权限的攻击者在用户或管理员使用令牌时执行攻击。
CVSS Information
N/A
Vulnerability Type
N/A