CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2017-8819
https://notcve.org/view.php?id=CVE-2017-8819
03 Dec 2017 — In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, the replay-cache protection mechanism is ineffective for v2 onion services, aka TROVE-2017-009. An attacker can send many INTRODUCE2 cells to trigger this issue. En Tor, en versiones anteriores a la 0.2.5.16; de la versión 0.2.6 hasta la 0.2.8 anterior a la 0.2.8.17; versiones 0.2.9 anteriores a la 0.2.9.14; versiones 0.3.0 anteriores a la 0.3.0.13 y versiones 0.3.1 anteriores... • https://blog.torproject.org/new-stable-tor-releases-security-fixes-0319-03013-02914-02817-02516 •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2017-8820
https://notcve.org/view.php?id=CVE-2017-8820
03 Dec 2017 — In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, remote attackers can cause a denial of service (NULL pointer dereference and application crash) against directory authorities via a malformed descriptor, aka TROVE-2017-010. En Tor, en versiones anteriores a la 0.2.5.16; de la versión 0.2.6 hasta la 0.2.8 anterior a la 0.2.8.17, versiones 0.2.9 anteriores a la 0.2.9.14; versiones 0.3.0 anteriores a la 0.3.0.13 y versiones 0.3.... • https://blog.torproject.org/new-stable-tor-releases-security-fixes-0319-03013-02914-02817-02516 • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 1%CPEs: 7EXPL: 0CVE-2017-8821
https://notcve.org/view.php?id=CVE-2017-8821
03 Dec 2017 — In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, an attacker can cause a denial of service (application hang) via crafted PEM input that signifies a public key requiring a password, which triggers an attempt by the OpenSSL library to ask the user for the password, aka TROVE-2017-011. En Tor, en versiones anteriores a la 0.2.5.16; de la versión 0.2.6 hasta la 0.2.8 anterior a la 0.2.8.17; versiones 0.2.9 anteriores a la 0.2.9... • https://blog.torproject.org/new-stable-tor-releases-security-fixes-0319-03013-02914-02817-02516 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 0%CPEs: 7EXPL: 0CVE-2017-8822
https://notcve.org/view.php?id=CVE-2017-8822
03 Dec 2017 — In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, relays (that have incompletely downloaded descriptors) can pick themselves in a circuit path, leading to a degradation of anonymity, aka TROVE-2017-012. En Tor, en versiones anteriores a la 0.2.5.16; de la versión 0.2.6 hasta la 0.2.8 anterior a la 0.2.8.17; versiones 0.2.9 anteriores a la 0.2.9.14; versiones 0.3.0 anteriores a la 0.3.0.13 y versiones 0.3.1 anteriores a la 0.3... • https://blog.torproject.org/new-stable-tor-releases-security-fixes-0319-03013-02914-02817-02516 • CWE-417: Communication Channel Errors •
CVSS: 8.1EPSS: 0%CPEs: 7EXPL: 0CVE-2017-8823
https://notcve.org/view.php?id=CVE-2017-8823
03 Dec 2017 — In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, there is a use-after-free in onion service v2 during intro-point expiration because the expiring list is mismanaged in certain error cases, aka TROVE-2017-013. En Tor, en versiones anteriores a la 0.2.5.16; de la versión 0.2.6 hasta la 0.2.8 anterior a la 0.2.8.17: versiones 0.2.9 anteriores a la 0.2.9.14; versiones 0.3.0 anteriores a la 0.3.0.13 y versiones 0.3.1 anteriores a... • https://blog.torproject.org/new-stable-tor-releases-security-fixes-0319-03013-02914-02817-02516 • CWE-416: Use After Free •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3180
https://notcve.org/view.php?id=CVE-2016-3180
07 Feb 2017 — Tor Browser Launcher (aka torbrowser-launcher) before 0.2.4, during the initial run, allows man-in-the-middle attackers to bypass the PGP signature verification and execute arbitrary code via a Trojan horse tar file and a signature file with the valid tarball and signature. Tor Browser Launcher (también conocido como torbrowser-launcher) en versiones anteriores a 0.2.4, durante la ejecución inicial, permite a atacantes man-in-the-middle eludir la verificación de la firma PGP y ejecutar código arbitrario a t... • http://www.securityfocus.com/bid/96140 • CWE-254: 7PK - Security Features •
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0CVE-2014-5751
https://notcve.org/view.php?id=CVE-2014-5751
09 Sep 2014 — The Tor Browser the Short Guide (aka com.wTorShortUserManual) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. La aplicación Tor Browser the Short Guide (también conocido como com.wTorShortUserManual) 0.1 para Android no verifica los certificados X.509 de los servidores SSL, lo que permite a atacantes man-in-the-middle falsificar servidores y obtener informaci... • http://www.kb.cert.org/vuls/id/354049 • CWE-310: Cryptographic Issues •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2012-3517
https://notcve.org/view.php?id=CVE-2012-3517
26 Aug 2012 — Use-after-free vulnerability in dns.c in Tor before 0.2.2.38 might allow remote attackers to cause a denial of service (daemon crash) via vectors related to failed DNS requests. Vulnerabilidad de liberación después de uso en dns.c en Tor anterior a 0.2.2.38 podría permitir a atacantes remotos causar una denegación de servicio (caída del demonio) a través de vectores relacionados con solicitudes fallidas de DNS. • http://lists.fedoraproject.org/pipermail/package-announce/2012-September/088006.html • CWE-399: Resource Management Errors •
CVSS: 6.5EPSS: 1%CPEs: 1EXPL: 0CVE-2012-3518
https://notcve.org/view.php?id=CVE-2012-3518
26 Aug 2012 — The networkstatus_parse_vote_from_string function in routerparse.c in Tor before 0.2.2.38 does not properly handle an invalid flavor name, which allows remote attackers to cause a denial of service (out-of-bounds read and daemon crash) via a crafted (1) vote document or (2) consensus document. La función networkstatus_parse_vote_from_string en routerparse.c en Tor anterior a v0.2.2.38 no maneja adecuadamente un (flavor name), lo cual podría permitir a atacantes remotos causar una denegación de servicio (lec... • http://lists.opensuse.org/opensuse-updates/2012-08/msg00048.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2012-3519
https://notcve.org/view.php?id=CVE-2012-3519
26 Aug 2012 — routerlist.c in Tor before 0.2.2.38 uses a different amount of time for relay-list iteration depending on which relay is chosen, which might allow remote attackers to obtain sensitive information about relay selection via a timing side-channel attack. routerlist.c en Tor anterior a v0.2.2.38 utiliza una cantidad diferente de tiempo para la iteración relay-list dependiendo de que (relay) sea elegido, lo cual podría permitir a atacantes remotos obtener información sensible sobre la selección del (relay) a tra... • http://lists.opensuse.org/opensuse-updates/2012-08/msg00048.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •