Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2009-0368

EPSS 0.38% · P60
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-0368

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
OpenSC before 0.11.7 allows physically proximate attackers to bypass intended PIN requirements and read private data objects via a (1) low level APDU command or (2) debugging tool, as demonstrated by reading the 4601 or 4701 file with the opensc-explorer or opensc-tool program.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
OpenSC PKCS#11 Implementation未授权访问漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
OpenSC是一个访问智能卡的函数和工具。支持加密操作,并实现例如邮件加密,身份验证安全应用的使用。 OpenSC之前的0.11.7版本允许附近的攻击者可以借助一个(1)低水平APDU指令或(2)调试工具,绕过预设的PIN要求并读取保密的数据对象,例如通过利用读取4601或4701文件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2009-0368

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2009-0368

登录查看更多情报信息。

Same Patch Batch · n/a · 2009-03-02 · 50 CVEs total

CVE-2008-6352Xpoze 'home.html' SQL注入漏洞
CVE-2008-6358Social Groupie 'group_index.php' SQL注入漏洞
CVE-2008-6362Ezonelink Membership Script 'sitepage.php' SQL注入漏洞
CVE-2008-6363Capilano DesignWorks Professional '.cct'文件缓冲区溢出漏洞
CVE-2008-6364Adserversolutions Banner Exchange Software Java 'logon_license.jsp'多个SQL注入漏洞
CVE-2008-6365Adserversolutions Ad Management Java 'logon.jsp' SQL注入漏洞
CVE-2008-6366Adserversolutions Affiliate Software Java 'logon.jsp' SQL注入漏洞
CVE-2008-6361Insun_Podcast InSun FeedCms 'lang'参数本地文件包含漏洞
CVE-2008-6354Net Guys ASPired2poll 'ASPired2poll.mdb'权限许可和访问控制漏洞
CVE-2008-6353ASP-CMS 'index.asp' SQL注入漏洞
CVE-2008-6355Net Guys ASPired2Protect 'ASPired2Protect.mdb'权限许可和访问控制漏洞
CVE-2008-6351TurnkeyForms Local Classifieds 'listtest.php'跨站脚本攻击漏洞
CVE-2008-6350TurnkeyForms Local Classifieds 'listtest.php'SQL注入漏洞
CVE-2008-6349TurnkeyForms Business Survey Pro 'survey_results_text.php' SQL注入漏洞
CVE-2008-6348Develop It Easy Photo Gallery多个SQL注入漏洞
CVE-2008-6347Joomla! Onguma Time Sheet 'lib/onguma.class.php' PHP远程文件包含漏洞
CVE-2008-63921Scripts Z1Exchange 'showads.php' SQL注入击漏洞
CVE-2008-6391nexusjnr jbook 'main.asp'SQL注入漏洞
CVE-2008-6390Ocean12Tech Ocean12 Membership Manager Pro 'login.asp' SQL注入漏洞
CVE-2008-6389Aliensoftcorp Rae Media Web Based Contact Management 'asadmin/default.asp' SQL注入漏洞

Showing top 20 of 50 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2009-0368

No comments yet

Leave a comment