Lucene search
K

25 matches found

CVE
CVE
added 2021/03/19 4:19 a.m.211 views

CVE-2021-28090

CVE-2021-28090 affects Tor up to version 0.4.5.7, where a bug in appending detached signatures to a pending consensus document could be exploited to crash a directory authority via an assertion failure (TROVE-2021-002). Open-source advisories and Nessus/Gentoo/OpenSUSE entries confirm this and re...

5.3CVSS5.9AI score0.02096EPSS
CVE
CVE
added 2017/11/04 6:0 p.m.195 views

CVE-2017-16541

CVE-2017-16541 concerns Tor Browser before 7.0.9 for macOS/Linux, where crafted web content abusing Firefox file:// handling could reveal the client’s IP address, i.e., a partial anonymity bypass. Several connected advisories (e.g., CESA-2018:3403, DSA-4327-1) cite Mozilla Firefox/Thunderbird upd...

6.5CVSS5.5AI score0.03662EPSS
CVE
CVE
added 2021/06/29 11:0 a.m.195 views

CVE-2021-34548

The CVE-2021-34548 entry pertains to Tor up to version 0.4.6.5 (TROVE-2021-003). Affected component: Tor relay/stream handling where an attacker can forge RELAY_END or RELAY_RESOLVED to bypass access control on half‑closed streams, potentially terminating streams or impacting availability. Impact...

7.5CVSS7.2AI score0.02721EPSS
CVE
CVE
added 2021/03/19 4:18 a.m.191 views

CVE-2021-28089

CVE-2021-28089 affects Tor before 0.4.5.7, enabling a remote participant in the Tor directory protocol to exhaust CPU resources on a target (denial of service). Connected advisories trace the issue to a memory/CPU handling flaw (dump_desc() dumping unparseable data) and related directory‑consensu...

7.5CVSS7.2AI score0.01672EPSS
CVE
CVE
added 2020/03/23 12:16 p.m.190 views

CVE-2020-10592

Tor is affected by CVE-2020-10592 (CPU consumption DoS) and CVE-2020-10593 (circuit padding memory leak) in versions before 0.3.5.10/0.4.x before 0.4.1.9/0.4.2.x before 0.4.2.7. Public advisories indicate upgrades to Tor 0.3.5.12 or later (e.g., 0.3.5.12, and later 0.3.5.x lines) address these is...

7.8CVSS7.2AI score0.03146EPSS
CVE
CVE
added 2021/06/29 11:8 a.m.190 views

CVE-2021-34549

CVE-2021-34549 affects Tor prior to 0.4.6.5. The issue is a hashtable-based CPU denial-of-service attack against relays: an attacker can exploit a naive, unkeyed hash used to look up circuits in a circuitmux to construct circuits with chosen circuit IDs, causing collisions and degraded performanc...

7.5CVSS7.2AI score0.01608EPSS
CVE
CVE
added 2021/06/29 11:11 a.m.189 views

CVE-2021-34550

Tor before 0.4.6.5 has a vulnerability in the v3 onion service descriptor parser that allows out-of-bounds memory access, causing client crashes. The issue is documented as CVE-2021-34550. Connected advisories indicate the vulnerability could lead to denial of service for relays/clients and that ...

7.5CVSS7.1AI score0.01564EPSS
CVE
CVE
added 2020/03/23 12:22 p.m.186 views

CVE-2020-10593

CVE-2020-10593 affects Tor before 0.3.5.10, 0.4.x before 0.4.1.9, and 0.4.2.x before 0.4.2.7. Root cause: a circuit-padding machine can be negotiated twice on the same circuit (circpad_setup_machine_on_circ), causing a memory leak that leads to DoS. Exploitation details are not provided beyond th...

7.5CVSS7.2AI score0.02282EPSS
CVE
CVE
added 2021/08/30 12:0 a.m.166 views

CVE-2021-38385

Tor vulnerable in versions before 0.3.5.16, 0.4.5.10, and 0.4.6.7 due to mishandling the relationship between batch-signature and single-signature verification, causing remote assertion failures (TROVE-2021-007). Connected advisories confirm the issue across multiple distributions and recommend u...

7.5CVSS7.2AI score0.01685EPSS
CVE
CVE
added 2019/02/21 11:0 p.m.153 views

CVE-2019-8955

CVE-2019-8955 affects Tor before certain updates, where a memory exhaustion in the KIST cell scheduler could enable a remote denial-of-service. Affected lines include Tor versions up to 0.3.3.12, 0.3.4.x before 0.3.4.11, 0.3.5.x before 0.3.5.8, and 0.4.x before 0.4.0.2-alpha. Public docs (OpenSUS...

7.5CVSS7.2AI score0.04572EPSS
CVE
CVE
added 2020/07/15 4:2 p.m.131 views

CVE-2020-15572

CVE-2020-15572 affects Tor prior to 0.4.3.6 and is caused by an out-of-bounds memory access when using NSS (TROVE-2020-001), allowing a remote denial-of-service (crash) target at affected Tor instances. Multiple advisories confirm the vulnerability and provide fixes in later Tor releases: 0.4.4.6...

7.5CVSS7.4AI score0.01404EPSS
CVE
CVE
added 2017/12/05 4:0 p.m.100 views

CVE-2016-1254

Tor before 0.2.8.12 is affected by CVE-2016-1254. The vulnerability arises from parsing hidden service descriptors and can cause a denial-of-service client crash. Affected products are Tor releases prior to 0.2.8.12; exploitation details are not provided beyond the crash condition. Remediation is...

7.5CVSS7AI score0.03004EPSS
CVE
CVE
added 2017/06/09 5:0 p.m.97 views

CVE-2017-0376

The CVE-2017-0376 vulnerability affects Tor prior to 0.3.0.8, caused by a flaw in the hidden-service code when receiving a BEGIN_DIR cell on a hidden service rendezvous circuit. This can trigger an assertion failure and daemon exit, resulting in denial of service. Upstream fixes are in Tor 0.3.0....

7.5CVSS7.1AI score0.02176EPSS
CVE
CVE
added 2020/01/24 5:22 p.m.89 views

CVE-2015-2928

In CVE-2015-2928, the Hidden Service server in Tor is vulnerable to remote Denial of Service via unspecified vectors in older releases: Tor before 0.2.4.27, 0.2.5.x before 0.2.5.12, and 0.2.6.x before 0.2.6.7. The issue causes an assertion failure and daemon exit. Remediation is to upgrade to the...

7.5CVSS7.1AI score0.01384EPSS
CVE
CVE
added 2020/01/24 5:22 p.m.88 views

CVE-2015-2929

CVE-2015-2929 affects the Hidden Service client in Tor before 0.2.4.27, 0.2.5.x before 0.2.5.12, and 0.2.6.x before 0.2.6.7. A malformed HS descriptor can cause a denial of service (assertion failure and application exit) on remote servers. Connected sources corroborate the remediation path: upgr...

7.5CVSS7.1AI score0.01161EPSS
CVE
CVE
added 2023/01/14 12:0 a.m.83 views

CVE-2023-23589

CVE-2023-23589 concerns Tor’s SafeSocks option. A logic error lets unsafe SOCKS4 traffic pass while blocking the safe SOCKS4a path (TROVE-2022-002). Affected: Tor before 0.4.7.13 (various distributions reference this vulnerability in advisories and security updates). Impact stated in sources: exp...

6.5CVSS6.2AI score0.00832EPSS
CVE
CVE
added 2020/01/24 5:46 p.m.77 views

CVE-2015-2688

CVE-2015-2688 affects Tor versions before 0.2.4.26 and 0.2.5.x before 0.2.5.11. The issue is a failure to handle unexpected arrival times of buffers with invalid layouts in buf_pullup, allowing remote attackers to trigger an assertion failure and daemon exit (denial of service). No exploitation d...

7.5CVSS7.2AI score0.02185EPSS
CVE
CVE
added 2020/01/24 5:46 p.m.74 views

CVE-2015-2689

CVE-2015-2689 affects Tor releases prior to 0.2.4.26 and 0.2.5.x prior to 0.2.5.11, caused by improper handling of pending-connection resolve states during periods of high DNS load. This enables remote attackers to trigger a denial of service (assertion failure and daemon exit) via crafted packet...

7.5CVSS7.2AI score0.02185EPSS
CVE
CVE
added 2017/06/09 5:0 p.m.66 views

CVE-2017-0375

The CVE-2017-0375 issue affects Tor’s hidden-service feature prior to 0.3.0.8, where a malformed BEGIN cell can trigger an assertion failure in relay_send_end_cell_from_edge_, causing a daemon crash (DoS). Affected software is Tor, with the root cause in the hidden service handling code. Remediat...

7.5CVSS7.2AI score0.02613EPSS
CVE
CVE
added 2026/05/07 2:11 a.m.34 views

CVE-2026-44599

Technical details about CVE-2026-44599 (affected software, vulnerable component, impact, or remediation) are not publicly available in the provided documents. Monitor for updates.

5.3CVSS5.8AI score0.00287EPSS
CVE
CVE
added 2026/05/07 2:20 a.m.27 views

CVE-2026-44600

CVE-2026-44600 affects Tor prior to 0.4.9.7, where the conflux out-of-order queue is not correctly accounted during queue clearing (TROVE-2026-010). The issue is described as a handling/queue accounting bug in the conflux component, with impact listed as low availability impact in at least one CV...

5.3CVSS5.8AI score0.00378EPSS
CVE
CVE
added 2026/05/07 3:21 a.m.22 views

CVE-2026-44603

Summary (CVE-2026-44603) Tor before 0.4.9.7 contains an out-of-bounds read by one byte triggered by a malformed BEGIN cell (TROVE-2026-007). Red Hat describes it as a remote-a exploitable flaw that can cause a low-impact Denial of Service, potentially making the service unavailable to legitimate ...

9.1CVSS5.8AI score0.00342EPSS
CVE
CVE
added 2026/05/07 12:56 a.m.20 views

CVE-2026-44597

CVE-2026-44597 affects Tor before 0.4.9.7. The issue is an out-of-bounds read when END, TRUNCATE, or a TRUNCATED cell lacks a reason in its payload (TROVE-2026-011). Impact as per sources includes high confidentiality and availability risks (CVSS). Exploitation details are not provided in the doc...

9.1CVSS5.8AI score0.0045EPSS
CVE
CVE
added 2026/05/07 3:9 a.m.19 views

CVE-2026-44601

Tor could crash a client when facing circuit queue memory pressure due to a double close of a circuit (TROVE-2026-009). Affected software: Tor prior to version 0.4.9.7. Root cause: circuit handling under memory pressure allows a double close, causing a denial of service on affected clients. Impac...

7.5CVSS5.8AI score0.00337EPSS
CVE
CVE
added 2026/05/07 3:17 a.m.19 views

CVE-2026-44602

Tor before 0.4.9.7 is affected by a NULL pointer dereference when a CERT cell is received out of order (TROVE-2026-006). This can lead to a denial of service, rendering the Tor service unavailable to legitimate users. The issue is triggered remotely via crafted CERT cells; sources in Red Hat and ...

7.5CVSS5.8AI score0.0033EPSS