Denial-of-service (DoS)

🗓️ 19 Aug 2021 20:55:17Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 5 Views

Tor is vulnerable to remote denial of service attacks due to assertion failures in the software.

Reporter	Title	Published	Views	Family All 50
AlpineLinux	CVE-2021-38385	30 Aug 202100:00	–	alpinelinux
Circl	CVE-2021-38385	30 Aug 202112:32	–	circl
CNNVD	TOR Virtual Network Tunneling Tool 安全漏洞	17 Aug 202100:00	–	cnnvd
CVE	CVE-2021-38385	30 Aug 202100:00	–	cve
Cvelist	CVE-2021-38385	30 Aug 202100:00	–	cvelist
Debian	[SECURITY] [DSA 4961-1] tor security update	23 Aug 202115:13	–	debian
Debian	[SECURITY] [DSA 4961-1] tor security update	23 Aug 202115:13	–	debian
Debian CVE	CVE-2021-38385	30 Aug 202100:00	–	debiancve
Tenable Nessus	Debian DSA-4961-1 : tor - security update	23 Aug 202100:00	–	nessus
Tenable Nessus	GLSA-202305-11 : Tor: Multiple Vulnerabilities	3 May 202300:00	–	nessus

Vulners

Node

tor torMatch0.4.5.6-1debian

AND

tor torMatch0.4.4.6-1debian

AND

debian debian_linuxMatch999

tor torMatch0.4.5.6-r0os

AND

tor torMatch0.4.3.5-r0os

AND

tor torMatch0.4.2.6-r0os

AND

tor torMatch0.4.2.7-r1os

AND

tor torMatch0.4.5.7-r0os

AND

tor torMatch0.4.5.8-r0os

AND

tor torMatch0.4.2.7-r0os

AND

tor torMatch0.4.6.5-r0os

AND

tor torMatch0.4.6.6-r0os

AND

alpinelinux alpine_linuxMatchedge

tor torMatch0.4.5.9-r0os

AND

tor torMatch0.4.5.8-r0os

AND

alpinelinux alpine_linuxMatch3.14

tor torMatch0.3.5.10-1debian

AND

tor torMatch0.3.5.12-1debian

AND

debian debian_linuxMatch10

tor torMatch0.4.4.6-1debian

AND

debian debian_linuxMatch11

Source	Link
security-tracker	www.security-tracker.debian.org/tracker/CVE-2021-38385
security	www.security.gentoo.org/glsa/202305-11
blog	www.blog.torproject.org/
blog	www.blog.torproject.org/node/2062
bugs	www.bugs.torproject.org/tpo/core/tor/40078

03 May 2023 14:38Current

6.4Medium risk

Vulners AI Score6.4

CVSS 25

CVSS 3.17.5

EPSS0.01685