CVE-2022-31291

Description

An issue in dlt_config_file_parser.c of dlt-daemon v2.18.8 allows attackers to cause a double free via crafted TCP packets.

Related CPE's

a genivi diagnostic_log_and_trace 2.18.8 *******

References

https://github.com/COVESA/dlt-daemon/pull/376/commits

PatchThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

AccessComplexity	LOW
ConfidentialityImpact	NONE
AvailabilityImpact	PARTIAL
IntegrityImpact	NONE
BaseScore	5
VectorString	AV:N/AC:L/Au:N/C:N/I:N/A:P
Version	2.0
AccessVector	NETWORK
Authentication	NONE

Created by Yello

About Severity.io