Diagnostic Log And Trace Security Vulnerabilities and Issues — Diagnostic Log And Trace CVE List

Lucene search

GeniviDiagnostic Log And Trace

6 matches found

CVE•added 2021/02/10 7:15 a.m.•99 views

CVE-2020-36244

The daemon in GENIVI diagnostic log and trace (DLT), is vulnerable to a heap-based buffer overflow that could allow an attacker to remotely execute arbitrary code on the DLT-Daemon (versions prior to 2.18.6).

9.8CVSS9.7AI score0.01333EPSS

CVE•added 2021/05/28 9:15 p.m.•79 views

CVE-2021-29507

GENIVI Diagnostic Log and Trace (DLT) provides a log and trace interface. In versions of GENIVI DLT between 2.10.0 and 2.18.6, a configuration file containing the special characters could cause a vulnerable component to crash. All the applications which are using the configuration file could fail t...

6.5CVSS5.8AI score0.00262EPSS

CVE•added 2022/10/25 5:15 p.m.•61 views

CVE-2022-39837

An issue was discovered in Connected Vehicle Systems Alliance (COVESA) dlt-daemon through 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a NULL pointer dereference,

5.5CVSS5.2AI score0.00024EPSS

CVE•added 2022/10/25 5:15 p.m.•59 views

CVE-2022-39836

5.5CVSS5.4AI score0.00025EPSS

CVE•added 2020/11/30 7:15 p.m.•56 views

CVE-2020-29394

A buffer overflow in the dlt_filter_load function in dlt_common.c from dlt-daemon through 2.18.5 (GENIVI Diagnostic Log and Trace) allows arbitrary code execution because fscanf is misused (no limit on the number of characters to be read in the format argument).

7.8CVSS8.1AI score0.00596EPSS

CVE•added 2022/06/16 4:15 p.m.•54 views

CVE-2022-31291

An issue in dlt_config_file_parser.c of dlt-daemon v2.18.8 allows attackers to cause a double free via crafted TCP packets.

7.5CVSS7.4AI score0.0002EPSS