{"vulnerability": "CVE-2022-30334", "sightings": [{"uuid": "6542e110-186e-42a9-91eb-b6fda849bafd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30334", "type": "seen", "source": "https://t.me/cibsecurity/42162", "content": "\u203c CVE-2022-30334 \u203c\n\nBrave before 1.34, when a Private Window with Tor Connectivity is used, leaks .onion URLs in Referer and Origin headers. NOTE: although this was fixed by Brave, the Brave documentation still advises \"Note that Private Windows with Tor Connectivity in Brave are just regular private windows that use Tor as a proxy. Brave does NOT implement most of the privacy protections from Tor Browser.\"\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-07T15:24:50.000000Z"}, {"uuid": "7f34b5de-257f-4df8-9ee5-3c2f34e67952", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30334", "type": "seen", "source": "https://t.me/arpsyndicate/2935", "content": "#ExploitObserverAlert\n\nCVE-2022-30334\n\nDESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2022-30334. Brave before 1.34, when a Private Window with Tor Connectivity is used, leaks .onion URLs in Referer and Origin headers. NOTE: although this was fixed by Brave, the Brave documentation still advises \"Note that Private Windows with Tor Connectivity in Brave are just regular private windows that use Tor as a proxy. Brave does NOT implement most of the privacy protections from Tor Browser.\"\n\nFIRST-EPSS: 0.001130000\nNVD-IS: 1.4\nNVD-ES: 3.9", "creation_timestamp": "2024-01-19T15:17:04.000000Z"}]}