Lucene search
GoogleOSV:CVE-2021-21323HistoryFeb 23, 2021 - 11:15 p.m.
CVE-2021-21323
2021-02-2323:15:13
Google
osv.dev
1
Brave is an open source web browser with a focus on privacy and security. In Brave versions 1.17.73-1.20.103, the CNAME adblocking feature added in Brave 1.17.73 accidentally initiated DNS requests that bypassed the Brave Tor proxy. Users with adblocking enabled would leak DNS requests from Tor windows to their DNS provider. (DNS requests that were not initiated by CNAME adblocking would go through Tor as expected.) This is fixed in Brave version 1.20.108
| CPE | Name | Operator | Version |
|---|---|---|---|
| brave-core | eq | 1.8.59 | |
| brave-core | eq | 0.72.52 | |
| brave-core | eq | 1.6.30 | |
| brave-core | eq | 1.13.42 | |
| brave-core | eq | 1.5.34 | |
| brave-core | eq | 0.64.26 | |
| brave-core | eq | 0.68.22 | |
| brave-core | eq | 0.72.5 | |
| brave-core | eq | 1.10.25 | |
| brave-core | eq | 1.11.46 |
Related
cvelist
cvelist
CVE-2021-21323 Regression in DNS leakage from Tor windows
2021-02-23 22:45:19
CVE-2021-45884
2021-12-27 21:31:48
nvd
nvd
CVE-2021-21323
2021-02-23 23:15:13
CVE-2021-45884
2021-12-27 22:15:07
cve
cve
CVE-2021-21323
2021-02-23 23:15:13
CVE-2021-45884
2021-12-27 22:15:07
prion
prion
Design/Logic Flaw
2021-02-23 23:15:00
Design/Logic Flaw
2021-12-27 22:15:00
osv
osv
CVE-2021-45884
2021-12-27 22:15:07