Lucene search

K

GoogleOSV:CVE-2021-28089

HistoryMar 19, 2021 - 5:15 a.m.

CVE-2021-28089

2021-03-1905:15:12

Google

osv.dev

6

cve-2021-28089

tor software

cpu exhaustion

AI Score

6.6

Confidence

Low

EPSS

0.002

Percentile

61.1%

Tor before 0.4.5.7 allows a remote participant in the Tor directory protocol to exhaust CPU resources on a target, aka TROVE-2021-001.

References

blog.torproject.org/node/2009

gitlab.torproject.org/tpo/core/tor/-/issues/40304

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPDXB2GZHG3VNOTWSXQ3QZVHNV76WCU5/

security.gentoo.org/glsa/202107-25

AI Score

6.6

Confidence

Low

EPSS

0.002

Percentile

61.1%

Related for OSV:CVE-2021-28089

cvelist1 ubuntucve1 alpinelinux1 debiancve1 nvd1 cve1 prion1 veracode1 nessus5 debian2 openvas5 osv3 suse2 mageia1 fedora1 gentoo1 ubuntu1