Yubico ykneo-openpgp before 1.0.10 has a typo in which an invalid PIN can be used. When first powered up, a signature will be issued even though the PIN has not been validated.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-03-29T23:16:10
Updated: 2024-08-06T05:39:32.133Z
Reserved: 2015-04-13T00:00:00
Link: CVE-2015-3298
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-03-30T00:15:08.083
Modified: 2022-04-08T14:46:14.567
Link: CVE-2015-3298
Redhat
No data.