Unrated severityNVD Advisory· Published Feb 2, 2020· Updated Aug 4, 2024
CVE-2020-8516
CVE-2020-8516
Description
The daemon in Tor through 0.4.1.8 and 0.4.2.x through 0.4.2.6 does not verify that a rendezvous node is known before attempting to connect to it, which might make it easier for remote attackers to discover circuit information. NOTE: The network team of Tor claims this is an intended behavior and not a vulnerability
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Tor/Tordescription
Patches
Vulnerability mechanics
References
5- lists.torproject.org/pipermail/tor-dev/2020-February/014146.htmlmitrex_refsource_MISC
- lists.torproject.org/pipermail/tor-dev/2020-February/014147.htmlmitrex_refsource_MISC
- security-tracker.debian.org/tracker/CVE-2020-8516mitrex_refsource_MISC
- trac.torproject.org/projects/tor/ticket/33129mitrex_refsource_MISC
- www.hackerfactor.com/blog/index.phpmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.