Vulnerability — CVE-2022-39837

CVE-2022-39837

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2022-39837
Description:: An issue was discovered in Connected Vehicle Systems Alliance (COVESA) dlt-daemon through 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a NULL pointer dereference,
Last updated date:: 10/27/2022

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/27/2022
Reference url to background: https://sec-consult.com/vulnerability-lab/advisory/multiple-memory-corruption-vulnerabilities-in-covesa-dlt-daemon/

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/27/2022
Reference url to background: https://seclists.org/fulldisclosure/2022/Sep/24