DEBIAN-CVE-2011-4896

DEBIAN-CVE-2011-4896 PUBLISHED CVSS 8.699999809265137 HIGH

Tor before 0.2.2.24-alpha continues to use a reachable bridge that was previously configured but is not currently configured, which might allow remote attackers to obtain sensitive information about clients in opportunistic circumstances by monitoring network traffic to the bridge port.

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
Debian:14	tor	0, 0, 0
Debian:13	tor	0, 0, 0
Debian:11	tor	0, 0, 0
Debian:12	tor	0, 0, 0

Timeline

Dec 23, 2011 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2011-4896 advisory

Open in Interactive Console →