CVE-2024-23945 — MEDIUM (5.9)

Q: How severe is CVE-2024-23945?

CVE-2024-23945 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2024-23945?

Check the references section above for vendor advisories and patch information. Affected products include: Apache Hive, Apache Spark.

Vulnerability Description

Signing cookies is an application security feature that adds a digital signature to cookie data to verify its authenticity and integrity. The signature helps prevent malicious actors from modifying the cookie value, which can lead to security vulnerabilities and exploitation. Apache Hive’s service component accidentally exposes the signed cookie to the end user when there is a mismatch in signature between the current and expected cookie. Exposing the correct cookie signature can lead to further exploitation. The vulnerable CookieSigner logic was introduced in Apache Hive by HIVE-9710 (1.2.0) and in Apache Spark by SPARK-14987 (2.0.0). The affected components are the following: * org.apache.hive:hive-service * org.apache.spark:spark-hive-thriftserver_2.11 * org.apache.spark:spark-hive-thriftserver_2.12

CVSS Score

5.9

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Apache	Hive	>= 1.2.0, < 4.0.0
Apache	Spark	>= 2.0.0, < 3.3.4

Related Weaknesses (CWE)

CWE-209

References

https://github.com/apache/hiveProduct
https://github.com/apache/hive/commit/7638cb1a3b07713cc490aa2909a37037f89e08b4Patch
https://github.com/apache/sparkProduct
https://github.com/apache/spark/commit/cf59b1f51c16301f689b4e0f17ba4dbd140e1b19Patch
https://issues.apache.org/jira/browse/HIVE-9710ExploitIssue TrackingPatch
https://issues.apache.org/jira/browse/SPARK-14987PatchVendor Advisory
https://lists.apache.org/thread/59r4mv7glrxpwkkdjvjbdljfpx3f5zzcMailing ListVendor Advisory
https://lists.apache.org/thread/5o2ljnzrv8zvhjw9vy7b4rwjpc32hgfcMailing ListVendor Advisory
http://www.openwall.com/lists/oss-security/2024/12/23/2Mailing ListThird Party Advisory

FAQ

What is CVE-2024-23945?

CVE-2024-23945 is a vulnerability with a CVSS score of 5.9 (MEDIUM). Signing cookies is an application security feature that adds a digital signature to cookie data to verify its authenticity and integrity. The signature helps prevent malicious actors from modifying th...

How severe is CVE-2024-23945?

CVE-2024-23945 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-23945?

Check the references section above for vendor advisories and patch information. Affected products include: Apache Hive, Apache Spark.