#VU82975 Out-of-bounds read in OpenSC - CVE-2023-4535
Vulnerability identifier: #VU82975
Vulnerability risk: Low
CVSSv4.0: 0.4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID:
CWE-ID:
CWE-125
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
OpenSC
Universal components / Libraries /
Libraries used by multiple products
Vendor: OpenSC
Description
The vulnerability allows an attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition within the MyEID driver when handling symmetric key encryption. An attacker with physical access to the system can use a specially crafted USB device to trigger an out-of-bounds read error and gain access to potentially sensitive information.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
OpenSC: 0.2.0 - 0.23.0
External links
https://github.com/OpenSC/OpenSC/releases/tag/0.24.0-rc1
https://github.com/OpenSC/OpenSC/wiki/OpenSC-security-advisories
https://github.com/OpenSC/OpenSC/issues/2792#issuecomment-1674806651
https://bugzilla.redhat.com/show_bug.cgi?id=2240914
https://access.redhat.com/security/cve/CVE-2023-4535
https://github.com/OpenSC/OpenSC/commit/f1993dc4e0b33050b8f72a3558ee88b24c4063b2
Q & A
Can this vulnerability be exploited remotely?
No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
