Vulnerabilities > CVE-2023-23589

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
torproject
debian
fedoraproject
NVD
Published: 2023-01-14
Updated: 2023-11-07

Summary

The SafeSocks option in Tor before 0.4.7.13 has a logic error in which the unsafe SOCKS4 protocol can be used but not the safe SOCKS4a protocol, aka TROVE-2022-002.

Vulnerable Configurations

Part Description Count
Application
Torproject
517
OS
Debian
2
OS
Fedoraproject
2

References