Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-6tx3-cayv-6yd4
Vulnerability ID VCID-6tx3-cayv-6yd4
Aliases CVE-2008-2235
Summary Smart cards formatted using OpenSC do not sufficiently protect the PIN, allowing attackers to reset it.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00068 https://api.first.org/data/v1/epss?cve=CVE-2008-2235
epss 0.00068 https://api.first.org/data/v1/epss?cve=CVE-2008-2235
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2235.json
https://api.first.org/data/v1/epss?cve=CVE-2008-2235
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2235
457367 https://bugzilla.redhat.com/show_bug.cgi?id=457367
GLSA-200812-09 https://security.gentoo.org/glsa/200812-09
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.21042
EPSS Score 0.00068
Published At June 11, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-11T18:18:55.829392+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/200812-09 38.6.0