CVE Details for CVE: CVE-2022-33903
Summary
Tor 0.4.7.x before 0.4.7.8 allows a denial of service via the wedging of RTT estimation.
Timestamps | |
---|---|
Last major update | 03-05-2023 - 12:16 |
Published | 17-07-2022 - 23:15 |
Last modified | 03-05-2023 - 12:16 |
Vulnerable Configurations
-
cpe:2.3:a:torproject:tor:0.4.7.1:alpha:*:*:*:*:*:*
cpe:2.3:a:torproject:tor:0.4.7.1:alpha:*:*:*:*:*:*
-
cpe:2.3:a:torproject:tor:0.4.7.2:alpha:*:*:*:*:*:*
cpe:2.3:a:torproject:tor:0.4.7.2:alpha:*:*:*:*:*:*
-
cpe:2.3:a:torproject:tor:0.4.7.3:alpha:*:*:*:*:*:*
cpe:2.3:a:torproject:tor:0.4.7.3:alpha:*:*:*:*:*:*
-
cpe:2.3:a:torproject:tor:0.4.7.4:alpha:*:*:*:*:*:*
cpe:2.3:a:torproject:tor:0.4.7.4:alpha:*:*:*:*:*:*
-
cpe:2.3:a:torproject:tor:0.4.7.5:alpha:*:*:*:*:*:*
cpe:2.3:a:torproject:tor:0.4.7.5:alpha:*:*:*:*:*:*
-
cpe:2.3:a:torproject:tor:0.4.7.6:rc:*:*:*:*:*:*
cpe:2.3:a:torproject:tor:0.4.7.6:rc:*:*:*:*:*:*
-
cpe:2.3:a:torproject:tor:0.4.7.7:*:*:*:*:*:*:*
cpe:2.3:a:torproject:tor:0.4.7.7:*:*:*:*:*:*:*
CWE
CVSS
Base
None
Impact
Exploitability
Access
Vector | Complexity | Authentication |
---|---|---|
Impact
Confidentiality | Integrity | Availability |
---|---|---|
CVSS3
Base
7.5
Impact
3.6
Exploitability
3.9
Access
Attack Complexity | Attack vector | Privileges Required | Scope | User Interaction |
---|---|---|---|---|
LOW | NETWORK | NONE | UNCHANGED | NONE |
Impact
Confidentiality | Integrity | Availability |
---|---|---|
NONE | NONE | HIGH |
VIA4 references
cvss3-vector
via4