Lucene search

K

CVE-2024-23945 Apache Hive, Apache Spark, Apache Spark: CookieSigner exposes the correct signature when message verification fails

🗓️ 23 Dec 2024 15:54:26Reported by apacheType 
vulnrichment
 vulnrichment
🔗 github.com👁 1 Views

CookieSigner exposes correct signature upon verification failure, risking exploitation in Apache Hive and Spark.

Show more
Related
Refs

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
23 Dec 2024 15:26Current
7High risk
Vulners AI Score7
EPSS0.0004
SSVC
1
.json
Report