CVE-2024-45620

LOW Year: 2024
CVSS v3 Score
3.9
Low
Weakness Type
CWE-120
View all →

Vulnerability Description

A vulnerability was found in the pkcs15-init tool in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. When buffers are partially filled with data, initialized parts of the buffer can be incorrectly accessed.

Related Vulnerabilities

CVE-2023-34115

LOW
CVSS:3.8(Low)

Buffer copy without checking size of input in Zoom Meeting SDK before 5.13.0 may allow an authenticated user to potentially enable a denial of service via local access. This issue may result in the Zo...

CWE-1202023

CVE-2021-21969

LOW
CVSS:3.7(Low)

An out-of-bounds write vulnerability exists in the HandleSeaCloudMessage functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. The HandleIncomingSeaCloudMessage function uses at [4] the jso...

CWE-1202021

CVE-2021-21970

LOW
CVSS:3.7(Low)

An out-of-bounds write vulnerability exists in the HandleSeaCloudMessage functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. The HandleIncomingSeaCloudMessage function uses at [3] the jso...

CWE-1202021

CVE-2023-6948

MEDIUM
CVSS:4.1(Medium)

A Buffer Copy without Checking Size of Input issue affecting the v2_sdk_service running on a set of DJI drone devices on the port 10000 could allow an attacker to cause a crash of the service through ...

CWE-1202023

CVE-2024-10106

LOW
CVSS:3.7(Low)

A buffer overflow vulnerability in the packet handoff plugin allows an attacker to overwrite memory outside the plugin's buffer.

CWE-1202024

CVE-2023-51796

LOW
CVSS:3.6(Low)

Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/f_reverse.c:269:26 in areverse_request_frame.

CWE-1202023