Genivi - Diagnostic Log And Trace CVE

Filtered by vendor Genivi Subscribe

Filtered by product Diagnostic Log And Trace

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-31291	1 Genivi	1 Diagnostic Log And Trace	2022-06-27	5.0 MEDIUM	7.5 HIGH
An issue in dlt_config_file_parser.c of dlt-daemon v2.18.8 allows attackers to cause a double free via crafted TCP packets.
CVE-2020-29394	1 Genivi	1 Diagnostic Log And Trace	2021-12-21	6.8 MEDIUM	7.8 HIGH
A buffer overflow in the dlt_filter_load function in dlt_common.c from dlt-daemon through 2.18.5 (GENIVI Diagnostic Log and Trace) allows arbitrary code execution because fscanf is misused (no limit on the number of characters to be read in the format argument).

Vulnerabilities (CVE)