5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.306 Low
EPSS
Percentile
96.9%
Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not properly
check the amount of compression in zlib-compressed data, which allows
remote attackers to cause a denial of service via a large compression
factor.