PT-2026-44840 · Opensc · Opensc
Nicholas Carlini
·
Published
2026-05-29
·
Updated
2026-05-29
·
CVE-2026-40510
CVSS v3.1
6.8
Medium
| Vector | AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
OpenSC versions prior to 0.27.0-rc1
Description
A stack buffer overflow exists in the
piv process history() function within src/libopensc/card-piv.c. This issue allows a physically present attacker to cause memory corruption by using a specially crafted PIV smart card or USB device. The trigger occurs when the device returns a URL field exceeding 118 bytes in the Key History Object ASN.1 response.Recommendations
Update to version 0.27.0-rc1 or apply the fix from commit 3f24f0b.
Fix
Stack Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Opensc