Vulnerability identifier: #VU82974

Vulnerability risk: Low

CVSSv3.1: 5.8 [CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-40661

CWE-ID: CWE-119

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
OpenSC
Universal components / Libraries / Libraries used by multiple products

Vendor: OpenSC

Description

The vulnerability allows an attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. An attacker with physical access to the system can trigger memory corruption and execute arbitrary code with elevated privileges.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

OpenSC: 0.2.0 - 0.23.0 rc2

---

External links
http://github.com/OpenSC/OpenSC/releases/tag/0.24.0-rc1
http://bugzilla.redhat.com/show_bug.cgi?id=2240913
http://github.com/OpenSC/OpenSC/wiki/OpenSC-security-advisories
http://github.com/OpenSC/OpenSC/issues/2792#issuecomment-1674806651
http://access.redhat.com/security/cve/CVE-2023-40661

---

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.