An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. Public exploit code available.
An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.
An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.