CVE-2022-33903

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-33903
Tor 0.4.7.x before 0.4.7.8 allows a denial of service via the wedging of RTT estimation.

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://lists.torproject.org/pipermail/tor-announce/2022-June/000242.html Mailing List Patch Vendor Advisory
https://security-tracker.debian.org/tracker/CVE-2022-33903 Third Party Advisory
https://security.gentoo.org/glsa/202305-11
Configurations

Configuration 1 (hide)

cpe:2.3:a:torproject:tor:*:*:*:*:*:*:*:*
History

No history.

Information

Published : 2022-07-17 23:15

Updated : 2023-05-03 12:16

NVD link : CVE-2022-33903

Mitre link : CVE-2022-33903

CVE.ORG link : CVE-2022-33903

JSON object : View

Products Affected

torproject

  • tor
CWE
NVD-CWE-noinfo