A vulnerability was found in IDEMIA SIGMA Lite & Lite +, SIGMA Wide, SIGMA Extreme, MorphoWave Compact, XP, VisionPass and MorphoWave SP and classified as critical. This issue affects some unknown processing of the component DesFire Key Handler. The manipulation leads to heap-based buffer overflow.
The identification of this vulnerability is CVE-2023-33221. It is possible to launch the attack on the physical device. There is no exploit available.
It is recommended to upgrade the affected component.