Vulnerability Description
Multiple uses of uninitialized variables were found in libopensc that may lead to information disclosure or application crash. An attack requires a crafted USB device or smart card that would present the system with specially crafted responses to the APDUs
CVSS Score
MEDIUM
Related Weaknesses (CWE)
References
- https://access.redhat.com/security/cve/CVE-2025-13763
- https://bugzilla.redhat.com/show_bug.cgi?id=2417581
- https://github.com/OpenSC/OpenSC/security/advisories/GHSA-2v44-fq35-98vv
- https://github.com/OpenSC/OpenSC/wiki/CVE-2025-13763
- https://github.com/OpenSC/OpenSC/security/advisories/GHSA-2v44-fq35-98vv
FAQ
What is CVE-2025-13763?
CVE-2025-13763 is a vulnerability with a CVSS score of 5.7 (MEDIUM). Multiple uses of uninitialized variables were found in libopensc that may lead to information disclosure or application crash. An attack requires a crafted USB device or smart card that would present ...
How severe is CVE-2025-13763?
CVE-2025-13763 has been rated MEDIUM with a CVSS base score of 5.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-13763?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.