EUVD-2018-15443

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2020-29394

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A buffer overflow in the dltfilterload function in dltcommon.c from dlt-daemon through 2.18.5 GENIVI Diagnostic Log and Trace allows arbitrary code execution...

Linux Distros Unpatched Vulnerability : CVE-2020-36244

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The daemon in GENIVI diagnostic log and trace DLT, is vulnerable to a heap-based buffer overflow that could allow an attacker to remotely execute arbitrary code...

Linux Distros Unpatched Vulnerability : CVE-2021-29507

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GENIVI Diagnostic Log and Trace DLT provides a log and trace interface. In versions of GENIVI DLT between 2.10.0 and 2.18.6, a configuration file containing the...

CVE-2024-39339

A vulnerability has been discovered in all versions of Smartplay headunits, which are widely used in Suzuki and Toyota cars. This misconfiguration can lead to information disclosure, leaking sensitive details such as diagnostic log traces, system logs, headunit passwords, and personally...

CVE-2024-39339

A vulnerability has been discovered in all versions of Smartplay headunits, which are widely used in Suzuki and Toyota cars. This misconfiguration can lead to information disclosure, leaking sensitive details such as diagnostic log traces, system logs, headunit passwords, and personally...

CVE-2024-39339

CVE-2024-39339 affects all versions of Smartplay headunits used in Suzuki and Toyota vehicles. The issue is described as a misconfiguration that leads to information disclosure, exposing diagnostic log traces, system logs, headunit passwords, and PII. The available documents provide the impact as...

Couchbase Server Security Vulnerability

Couchbase Server is a distributed, open source NoSQL non-relational database from Couchbase, Inc. that supports data querying, full-text searching, and active global replication. A security vulnerability exists in Couchbase Server prior to version 7.2.4, which stems from nsserver administrative...

PT-2024-13940 · Couchbase · Couchbase Server

Name of the Vulnerable Software and Affected Versions: Couchbase Server versions 7.1.5 through 7.2.3 Description: An issue was discovered in Couchbase Server where ns server admin credentials are leaked in encoded form in the diag.log file. Recommendations: For Couchbase Server versions 7.1.5...

UBUNTU-CVE-2022-39837

An issue was discovered in Connected Vehicle Systems Alliance COVESA dlt-daemon through 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a NULL pointer dereference,...

dlt-daemon 缓冲区错误漏洞

Dlt-daemon is the DLT communication interface for Genivia's ECU. It collects and buffers log messages from one or more DLT users running on the ECU and makes them available to DLT clients upon request. A buffer overflow vulnerability exists in Genivia Dlt-daemon 2.18.8 and prior versions, which...

CVE-2021-29507

GENIVI Diagnostic Log and Trace DLT provides a log and trace interface. In versions of GENIVI DLT between 2.10.0 and 2.18.6, a configuration file containing the special characters could cause a vulnerable component to crash. All the applications which are using the configuration file could fail t...

DEBIAN-CVE-2021-29507

GENIVI Diagnostic Log and Trace DLT provides a log and trace interface. In versions of GENIVI DLT between 2.10.0 and 2.18.6, a configuration file containing the special characters could cause a vulnerable component to crash. All the applications which are using the configuration file could fail t...

Information disclosure

GENIVI Diagnostic Log and Trace DLT provides a log and trace interface. In versions of GENIVI DLT between 2.10.0 and 2.18.6, a configuration file containing the special characters could cause a vulnerable component to crash. All the applications which are using the configuration file could fail t...

UBUNTU-CVE-2021-29507

GENIVI Diagnostic Log and Trace DLT provides a log and trace interface. In versions of GENIVI DLT between 2.10.0 and 2.18.6, a configuration file containing the special characters could cause a vulnerable component to crash. All the applications which are using the configuration file could fail t...

CVE-2021-29507 dlt-daemon could crash if there is special character in dlt.conf

GENIVI Diagnostic Log and Trace DLT provides a log and trace interface. In versions of GENIVI DLT between 2.10.0 and 2.18.6, a configuration file containing the special characters could cause a vulnerable component to crash. All the applications which are using the configuration file could fail t...

UBUNTU-CVE-2020-36244

The daemon in GENIVI diagnostic log and trace DLT, is vulnerable to a heap-based buffer overflow that could allow an attacker to remotely execute arbitrary code on the DLT-Daemon versions prior to 2.18.6...

GENIVI Diagnostic Log Buffer Error Vulnerability

GENIVI Diagnostic Log is a communication protocol for the GlobalGENIVI community. Log and Trace interfaces are provided. A buffer error vulnerability exists in GENIVI Diagnostic Log and Trace that originates when a networked system or product performs an operation on memory without properly...

CVE-2020-29394

A buffer overflow in the dltfilterload function in dltcommon.c from dlt-daemon through 2.18.5 GENIVI Diagnostic Log and Trace allows arbitrary code execution because fscanf is misused no limit on the number of characters to be read in the format argument...

CVE-2020-29394

CVE-2020-29394 affects GENIVI Diagnostic Log and Trace (DLT) - daemon: up to version 2.18.5. A buffer overflow in the function dlt_filter_load of dlt_common.c allows arbitrary code execution because fscanf is used without a length limit. The vulnerability stems from an unchecked input length in t...