Unrated severityNVD Advisory· Published May 7, 2022· Updated Aug 3, 2024
CVE-2022-30334
CVE-2022-30334
Description
Brave before 1.34, when a Private Window with Tor Connectivity is used, leaks .onion URLs in Referer and Origin headers. NOTE: although this was fixed by Brave, the Brave documentation still advises "Note that Private Windows with Tor Connectivity in Brave are just regular private windows that use Tor as a proxy. Brave does NOT implement most of the privacy protections from Tor Browser."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
4- github.com/brave/brave-browser/issues/18071mitrex_refsource_MISC
- github.com/brave/brave-core/pull/10760mitrex_refsource_MISC
- hackerone.com/reports/1337624mitrex_refsource_MISC
- support.brave.com/hc/en-us/articles/360018121491-What-is-a-Private-Window-with-Tor-Connectivity-mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.