Vulnerabilities > Genivi > Diagnostic LOG AND Trace > 2.18.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-25 | CVE-2022-39836 | Out-of-bounds Read vulnerability in Genivi Diagnostic LOG and Trace An issue was discovered in Connected Vehicle Systems Alliance (COVESA) dlt-daemon through 2.18.8. | 5.5 |
| 2022-10-25 | CVE-2022-39837 | NULL Pointer Dereference vulnerability in Genivi Diagnostic LOG and Trace An issue was discovered in Connected Vehicle Systems Alliance (COVESA) dlt-daemon through 2.18.8. | 5.5 |
| 2021-05-28 | CVE-2021-29507 | Unspecified vulnerability in Genivi Diagnostic LOG and Trace GENIVI Diagnostic Log and Trace (DLT) provides a log and trace interface. | 4.0 |
| 2021-02-10 | CVE-2020-36244 | Out-of-bounds Write vulnerability in multiple products The daemon in GENIVI diagnostic log and trace (DLT), is vulnerable to a heap-based buffer overflow that could allow an attacker to remotely execute arbitrary code on the DLT-Daemon (versions prior to 2.18.6). | 9.8 |
| 2020-11-30 | CVE-2020-29394 | Out-of-bounds Write vulnerability in multiple products A buffer overflow in the dlt_filter_load function in dlt_common.c from dlt-daemon through 2.18.5 (GENIVI Diagnostic Log and Trace) allows arbitrary code execution because fscanf is misused (no limit on the number of characters to be read in the format argument). | 7.8 |