Vulnerability Name:

CVE-2020-15572 (CCN-185445)

Assigned:2020-07-09
Published:2020-07-09
Updated:2021-07-21
Summary:Tor before 0.4.3.6 has an out-of-bounds memory access that allows a remote denial-of-service (crash) attack against Tor instances built to use Mozilla Network Security Services (NSS), aka TROVE-2020-001.
CVSS v3 Severity:7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
6.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H)
5.7 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
6.8 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
Vulnerability Type:CWE-119
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2020-15572

Source: CCN
Type: Tor Blog, July 09, 2020
New releases: Tor 0.3.5.11, 0.4.2.8, and 0.4.3.6 (with security fixes)

Source: CONFIRM
Type: Release Notes, Vendor Advisory
https://blog.torproject.org/new-release-tor-03511-0428-0436-security-fixes

Source: XF
Type: UNKNOWN
tor-cve202015572-dos(185445)

Source: MISC
Type: Vendor Advisory
https://gitlab.torproject.org/tpo/core/tor/-/issues/33119

Source: MISC
Type: Vendor Advisory
https://trac.torproject.org/projects/tor/wiki/TROVE

Source: CCN
Type: Tor Project Web site
Tor

Vulnerable Configuration:Configuration 1:
  • cpe:/a:torproject:tor:*:*:*:*:*:*:*:* (Version < 0.3.5.11)
  • OR cpe:/a:torproject:tor:*:*:*:*:*:*:*:* (Version > 0.4.2.0 and < 0.4.2.8)
  • OR cpe:/a:torproject:tor:*:*:*:*:*:*:*:* (Version > 0.4.3.0 and < 0.4.3.6)
  • OR cpe:/a:torproject:tor:0.4.4.0:alpha:*:*:*:*:*:*
  • OR cpe:/a:torproject:tor:0.4.4.1:alpha:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:cory_lamle:duplicator:0.4.3:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:202015572
    V
    CVE-2020-15572
    2022-06-30
    oval:org.opensuse.security:def:113539
    P
    tor-0.4.6.7-2.2 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:74687
    P
    Security update for go1.16 (Moderate)
    2021-12-23
    oval:org.opensuse.security:def:64822
    P
    Security update for fetchmail (Moderate)
    2021-12-14
    oval:org.opensuse.security:def:64621
    P
    Security update for ruby2.5 (Important)
    2021-12-01
    oval:org.opensuse.security:def:106934
    P
    tor-0.4.6.7-2.2 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:64578
    P
    Security update for hivex (Moderate)
    2021-09-23
    oval:org.opensuse.security:def:64715
    P
    Security update for python-rsa (Important)
    2021-06-17
    oval:org.opensuse.security:def:64714
    P
    Security update for tpm2.0-tools (Moderate)
    2021-06-17
    oval:org.opensuse.security:def:64509
    P
    Security update for libX11 (Moderate)
    2021-05-26
    oval:org.opensuse.security:def:64468
    P
    Security update for wpa_supplicant (Moderate)
    2021-04-13
    oval:org.opensuse.security:def:100266
    P
    (Moderate)
    2021-01-13
    oval:org.opensuse.security:def:26462
    P
    Security update for Mozilla Thunderbird (Important)
    2020-12-01
    oval:org.opensuse.security:def:64981
    P
    Security update for ceph (Important)
    2020-12-01
    oval:org.opensuse.security:def:64126
    P
    Security update for ghostscript (Important)
    2020-12-01
    oval:org.opensuse.security:def:25824
    P
    Security update for mariadb (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64924
    P
    Security update for ucode-intel (Important)
    2020-12-01
    oval:org.opensuse.security:def:64260
    P
    giflib-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25780
    P
    Security update for python (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64366
    P
    libpcre2-16-0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:74561
    P
    Security update for inn (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25766
    P
    Security update for mariadb (Important)
    2020-12-01
    oval:org.opensuse.security:def:75168
    P
    Security update for tor (Important)
    2020-12-01
    oval:org.opensuse.security:def:75035
    P
    Security update for python (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25678
    P
    Security update for kernel-firmware (Important)
    2020-12-01
    oval:org.opensuse.security:def:26497
    P
    Security update for tor (Important)
    2020-12-01
    oval:org.opensuse.security:def:65093
    P
    Security update for sudo (Important)
    2020-12-01
    oval:org.opensuse.security:def:25625
    P
    Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:109736
    P
    Security update for tor (Important)
    2020-11-19
    oval:org.opensuse.security:def:103079
    P
    Security update for tor (Important)
    2020-11-19
    oval:org.opensuse.security:def:110311
    P
    Security update for tor (Important)
    2020-11-19
    oval:org.opensuse.security:def:93553
    P
    Security update for tor (Important)
    2020-11-19
    oval:org.opensuse.security:def:110863
    P
    Security update for tor (Important)
    2020-11-19
    oval:org.opensuse.security:def:96389
    P
    Security update for tor (Important)
    2020-11-19
    BACK
    torproject tor *
    torproject tor *
    torproject tor *
    torproject tor 0.4.4.0 alpha
    torproject tor 0.4.4.1 alpha
    cory_lamle duplicator 0.4.3