Lucene search
K

81 matches found

Vulnrichment
Vulnrichment
added 2022/10/24 12:0 a.m.9 views

CVE-2022-39836

An issue was discovered in Connected Vehicle Systems Alliance COVESA dlt-daemon through 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a heap-based buffer over-read of one byte...

5.4AI score0.00417EPSS
Exploits3References3
Vulnrichment
Vulnrichment
added 2022/10/24 12:0 a.m.4 views

CVE-2022-39837

An issue was discovered in Connected Vehicle Systems Alliance COVESA dlt-daemon through 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a NULL pointer dereference,...

5.3AI score0.00417EPSS
Exploits3References3
OSV
OSV
added 2022/10/24 12:0 a.m.23 views

CVE-2022-39837

An issue was discovered in Connected Vehicle Systems Alliance COVESA dlt-daemon through 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a NULL pointer dereference,...

5.5CVSS6.6AI score0.00417EPSS
Exploits3References5
CVE
CVE
added 2022/10/24 12:0 a.m.81 views

CVE-2022-39837

CVE-2022-39837 affects the Connected Vehicle Systems Alliance (COVESA) dlt-daemon up to version 2.18.8. The issue is a NULL pointer dereference caused by a faulty DLT file parser, and a crafted DLT file could crash the process (local access required). The NVD/NVDC entries show a MEDIUM base score...

5.5CVSS5.2AI score0.00417EPSS
Exploits3References3Affected Software1
Debian CVE
Debian CVE
added 2022/10/24 12:0 a.m.20 views

CVE-2022-39837

An issue was discovered in Connected Vehicle Systems Alliance COVESA dlt-daemon through 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a NULL pointer dereference,...

5.5CVSS5.2AI score0.00417EPSS
Exploits3
Debian CVE
Debian CVE
added 2022/10/24 12:0 a.m.25 views

CVE-2022-39836

An issue was discovered in Connected Vehicle Systems Alliance COVESA dlt-daemon through 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a heap-based buffer over-read of one byte...

5.5CVSS5.4AI score0.00417EPSS
Exploits3
CNVD
CNVD
added 2022/09/29 12:0 a.m.29 views

Genivia Dlt-daemon Buffer Overflow Vulnerability

Dlt-daemon is the DLT communication interface for Genivia's ECU. It collects and buffers log messages from one or more DLT users running on the ECU and makes them available to DLT clients upon request. A buffer overflow vulnerability exists in Genivia Dlt-daemon 2.18.8 and prior versions, which...

5.5CVSS5.7AI score0.00417EPSS
Exploits3References1
CNVD
CNVD
added 2022/09/29 12:0 a.m.19 views

Genivia Dlt-daemon Denial of Service Vulnerability

Dlt-daemon is the DLT communication interface for Genivia's ECU. It collects and buffers log messages from one or more DLT users running on the ECU and makes them available to DLT clients upon request. A denial of service vulnerability exists in Genivia Dlt-daemon 2.18.8 and prior versions, which...

5.5CVSS5.5AI score0.00417EPSS
Exploits3References1
0day.today
0day.today
added 2022/09/28 12:0 a.m.257 views

COVESA 2.18.8 NULL Pointer Dereference / Heap Buffer Over-Read Vulnerability

======================================================================= title: Multiple Memory Corruption Vulnerabilities product: COVESA DLT daemon Diagnostic Log and Trace Connected Vehicle Systems Alliance COVESA, formerly GENIVI vulnerable version: = 2.18.8 fixed version: current master branc...

5.5CVSS0.5AI score0.00417EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/09/27 12:0 a.m.271 views

COVESA 2.18.8 NULL Pointer Dereference / Heap Buffer Over-Read

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple Memory Corruption Vulnerabilities product: COVESA DLT daemon Diagnostic Log and Trace Connected Vehicle Systems Alliance COVESA, formerly GENIVI vulnerable...

0.5AI score0.00417EPSS
Exploits4
CNNVD
CNNVD
added 2022/09/27 12:0 a.m.22 views

dlt-daemon 缓冲区错误漏洞

Dlt-daemon is the DLT communication interface for Genivia's ECU. It collects and buffers log messages from one or more DLT users running on the ECU and makes them available to DLT clients upon request. A buffer overflow vulnerability exists in Genivia Dlt-daemon 2.18.8 and prior versions, which...

5.5CVSS7.2AI score0.00417EPSS
Exploits3References6
CNNVD
CNNVD
added 2022/09/27 12:0 a.m.7 views

dlt-daemon 代码问题漏洞

Dlt-daemon is the DLT communication interface for Genivia's ECU. It collects and buffers log messages from one or more DLT users running on the ECU and makes them available to DLT clients upon request. A denial of service vulnerability exists in Genivia Dlt-daemon 2.18.8 and prior versions, which...

5.5CVSS6.7AI score0.00417EPSS
Exploits3References6
ATTACKERKB
ATTACKERKB
added 2022/06/16 4:15 p.m.3 views

CVE-2022-31291

An issue in dltconfigfileparser.c of dlt-daemon v2.18.8 allows attackers to cause a double free via crafted TCP packets...

7.5CVSS7.1AI score0.00992EPSS
Exploits0References3
OSV
OSV
added 2022/06/16 4:15 p.m.1 views

DEBIAN-CVE-2022-31291

An issue in dltconfigfileparser.c of dlt-daemon v2.18.8 allows attackers to cause a double free via crafted TCP packets...

7.5CVSS7AI score0.00992EPSS
Exploits0References1
NVD
NVD
added 2022/06/16 4:15 p.m.23 views

CVE-2022-31291

An issue in dltconfigfileparser.c of dlt-daemon v2.18.8 allows attackers to cause a double free via crafted TCP packets...

7.5CVSS0.00992EPSS
Exploits0References2
Prion
Prion
added 2022/06/16 4:15 p.m.21 views

Double free

An issue in dltconfigfileparser.c of dlt-daemon v2.18.8 allows attackers to cause a double free via crafted TCP packets...

5CVSS7.4AI score0.00992EPSS
Exploits0References2Affected Software2
UbuntuCve
UbuntuCve
added 2022/06/16 4:15 p.m.32 views

CVE-2022-31291

An issue in dltconfigfileparser.c of dlt-daemon v2.18.8 allows attackers to cause a double free via crafted TCP packets...

7.5CVSS7.1AI score0.00992EPSS
Exploits0References4
CVE
CVE
added 2022/06/16 12:0 a.m.72 views

CVE-2022-31291

The CVE-2022-31291 issue affects dlt-daemon (version 2.18.8) in the dlt_config_file_parser.c component, enabling a double-free when processing crafted TCP packets. This is a network‑accessible vulnerability with high impact on availability (per CVSS v3.1). Connected sources corroborate the double...

7.5CVSS7.4AI score0.00992EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2022/06/16 12:0 a.m.5 views

dlt-daemon 资源管理错误漏洞

The dlt-daemon is the DLT communication interface for GENIVI's ECU. It collects and buffers log messages from one or more DLT users running on the ECU and makes them available to DLT clients upon request. A security vulnerability exists in dlt-daemon version v2.18.8, which stems from the fact tha...

7.5CVSS7.2AI score0.00992EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/06/16 12:0 a.m.25 views

CVE-2022-31291

An issue in dltconfigfileparser.c of dlt-daemon v2.18.8 allows attackers to cause a double free via crafted TCP packets...

8.7AI score0.00992EPSS
Exploits0References2
Rows per page
Query Builder