CVE-2010-0384

Tor 0.2.2.x before 0.2.2.7-alpha, when functioning as a directory mirror, does not prevent logging of the client IP address upon detection of erroneous client behavior, which might make it easier for local users to discover the identities of clients in opportunistic circumstances by reading log files.
Severity
UNKNOWN
AV:L/AC:L/Au:N/C:P/I:N/A:N
Atk. Vector
LOCAL
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
VendorProductVersion
tortor
0.2.2.1
tortor
0.2.2.1
tortor
0.2.2.2
tortor
0.2.2.2
tortor
0.2.2.3
tortor
0.2.2.3
tortor
0.2.2.4
tortor
0.2.2.4
tortor
0.2.2.5
tortor
0.2.2.5
tortor
0.2.2.6
tortor
0.2.2.6
𝑥
= Vulnerable software versions