Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
genivi diagnostic log and trace vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2021-29507
GENIVI Diagnostic Log and Trace (DLT) provides a log and trace interface. In versions of GENIVI DLT between 2.10.0 and 2.18.6, a configuration file containing the special characters could cause a vulnerable component to crash. All the applications which are using the configuratio...
Genivi Diagnostic Log And Trace
NA
CVE-2022-39836
An issue exists in Connected Vehicle Systems Alliance (COVESA) dlt-daemon up to and including 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a heap-based buffer over-read of o...
Genivi Diagnostic Log And Trace
NA
CVE-2022-39837
An issue exists in Connected Vehicle Systems Alliance (COVESA) dlt-daemon up to and including 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a NULL pointer dereference,
Genivi Diagnostic Log And Trace
7.5
CVSSv2
CVE-2020-36244
The daemon in GENIVI diagnostic log and trace (DLT), is vulnerable to a heap-based buffer overflow that could allow an malicious user to remotely execute arbitrary code on the DLT-Daemon (versions before 2.18.6).
Genivi Diagnostic Log And Trace
Debian Debian Linux 10.0
6.8
CVSSv2
CVE-2020-29394
A buffer overflow in the dlt_filter_load function in dlt_common.c from dlt-daemon up to and including 2.18.5 (GENIVI Diagnostic Log and Trace) allows arbitrary code execution because fscanf is misused (no limit on the number of characters to be read in the format argument).
Genivi Diagnostic Log And Trace
Debian Debian Linux 10.0
5
CVSSv2
CVE-2022-31291
An issue in dlt_config_file_parser.c of dlt-daemon v2.18.8 allows malicious users to cause a double free via crafted TCP packets.
Genivi Diagnostic Log And Trace 2.18.8
Debian Debian Linux 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started