Vulnerabilities > CVE-2022-4066

CVSS 8.2 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

HIGH

network

low complexity

mozilla

onion-project

NVD

Published: 2022-11-19

Updated: 2024-11-21

Summary

A vulnerability was found in davidmoreno onion. It has been rated as problematic. Affected by this issue is the function onion_response_flush of the file src/onion/response.c of the component Log Handler. The manipulation leads to allocation of resources. The name of the patch is de8ea938342b36c28024fd8393ebc27b8442a161. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-214028.

Vulnerable Configurations

Part	Description	Count
Application	Mozilla Mozilla Firefox -	1
Application	Onion_Project Onion Project Onion - Onion Project Onion 0.2 Onion Project Onion 0.3 Onion Project Onion 0.4 Onion Project Onion 0.5 Onion Project Onion 0.7 Onion Project Onion 0.8	7

References

https://github.com/davidmoreno/onion/commit/de8ea938342b36c28024fd8393ebc27b8442a161
https://github.com/davidmoreno/onion/commit/de8ea938342b36c28024fd8393ebc27b8442a161
https://github.com/davidmoreno/onion/pull/308
https://github.com/davidmoreno/onion/pull/308
https://vuldb.com/?id.214028
https://vuldb.com/?id.214028

Vulnerabilities > CVE-2022-4066 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2022-4066"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2022-4066