Medium severity6.1NVD Advisory· Published Aug 31, 2021· Updated Jun 17, 2026
CVE-2021-22929
CVE-2021-22929
Description
An information disclosure exists in Brave Browser Desktop prior to version 1.28.62, where logged warning messages that included timestamps of connections to V2 onion domains in tor.log.
Affected products
7- Brave/Browser Desktopdescription
- Range: <1.28.62
- osv-coords5 versionspkg:rpm/opensuse/tor&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/tor&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/tor&distro=openSUSE%20Tumbleweedpkg:rpm/suse/tor&distro=SUSE%20Package%20Hub%2015%20SP2pkg:rpm/suse/tor&distro=SUSE%20Package%20Hub%2015%20SP3
< 0.4.6.8-bp153.2.9.1+ 4 more
- (no CPE)range: < 0.4.6.8-bp153.2.9.1
- (no CPE)range: < 0.4.6.8-bp153.2.9.1
- (no CPE)range: < 0.4.6.8-1.1
- (no CPE)range: < 0.4.6.8-bp152.2.18.1
- (no CPE)range: < 0.4.6.8-bp153.2.9.1
Patches
Vulnerability mechanics
References
1- hackerone.com/reports/1249056nvdExploitPatchThird Party Advisory
News mentions
0No linked articles in our index yet.