National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Vulnerability Change Record for CVE-2017-8819

Change History

Initial Analysis - 12/21/2017 1:11:28 PM

Action Type Old Value New Value
Changed Reference Type
https://blog.torproject.org/new-stable-tor-releases-security-fixes-0319-03013-02914-02817-02516 No Types Assigned
https://blog.torproject.org/new-stable-tor-releases-security-fixes-0319-03013-02914-02817-02516 Vendor Advisory
Changed Reference Type
https://bugs.torproject.org/24244 No Types Assigned
https://bugs.torproject.org/24244 Vendor Advisory
Changed Reference Type
https://www.debian.org/security/2017/dsa-4054 No Types Assigned
https://www.debian.org/security/2017/dsa-4054 Third Party Advisory
Added CWE
CWE-284
Added CVSS V2
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Added CVSS V3
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Added CPE Configuration
OR
     *cpe:2.3:a:tor_project:tor:*:*:*:*:*:*:*:* versions up to (excluding) 0.2.5.16
     *cpe:2.3:a:tor_project:tor:*:*:*:*:*:*:*:* versions from (including) 0.2.6 up to (excluding) 0.2.8.17
     *cpe:2.3:a:tor_project:tor:*:*:*:*:*:*:*:* versions from (including) 0.2.9 up to (excluding) 0.2.9.14
     *cpe:2.3:a:tor_project:tor:*:*:*:*:*:*:*:* versions from (including) 0.3.0 up to (excluding) 0.3.0.13
     *cpe:2.3:a:tor_project:tor:*:*:*:*:*:*:*:* versions from (including) 0.3.1 up to (excluding) 0.3.1.9
Added CPE Configuration
OR
     *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
     *cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*