CVE-2024-23945

Published: Dic 23, 2024 Last Modified: Lug 14, 2025 EU-VD ID: EUVD-2024-3564 Aliases: GHSA-77pm-w3hx-f8mj
ExploitDB:
Other exploit source:
Google Dorks:
MEDIUM 5,9
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
Attack Vector: network
Attack Complexity: high
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: none
Integrity: high
Availability: none

Description

AI Translation Available

Signing cookies is an application security feature that adds a digital signature to cookie data to verify its authenticity and integrity. The signature helps prevent malicious actors from modifying the cookie value, which can lead to security vulnerabilities and exploitation. Apache Hive’s service component accidentally exposes the signed cookie to the end user when there is a mismatch in signature between the current and expected cookie. Exposing the correct cookie signature can lead to further exploitation.

The vulnerable CookieSigner logic was introduced in Apache Hive by HIVE-9710 (1.2.0) and in Apache Spark by SPARK-14987 (2.0.0). The affected components are the following:
* org.apache.hive:hive-service
* org.apache.spark:spark-hive-thriftserver_2.11
* org.apache.spark:spark-hive-thriftserver_2.12

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0765
Percentile
0,9th
Updated

EPSS Score Trend (Last 90 Days)

209

Generation of Error Message Containing Sensitive Information

Draft
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Confidentiality
Potential Impacts:
Read Application Data
Applicable Platforms
Languages: Java, Not Language-Specific, PHP
Likelihood of Exploit: High
View CWE Details
Application

Spark by Apache

Product Information
Vendor Apache
Product Spark
Version Range Affected
From 2.0.0 (inclusive)
To 3.3.4 (exclusive)
cpe:2.3:a:apache:spark:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Spark by Apache

Product Information
Vendor Apache
Product Spark
Version 3.5.0
cpe:2.3:a:apache:spark:3.5.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Hive by Apache

Product Information
Vendor Apache
Product Hive
Version Range Affected
From 1.2.0 (inclusive)
To 4.0.0 (exclusive)
cpe:2.3:a:apache:hive:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Spark by Apache

Product Information
Vendor Apache
Product Spark
Version Range Affected
From 3.4.0 (inclusive)
To 3.4.2 (exclusive)
cpe:2.3:a:apache:spark:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
http://www.openwall.com/lists/oss-security/2024/12/23/2
Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2024/12/23/2
https://github.com/apache/hive
Product
https://github.com/apache/hive
https://github.com/apache/hive/commit/7638cb1a3b07713cc490a…
Patch
https://github.com/apache/hive/commit/7638cb1a3b07713cc490aa2909a37037f89e08b4
https://github.com/apache/spark
Product
https://github.com/apache/spark
https://github.com/apache/spark/commit/cf59b1f51c16301f689b…
Patch
https://github.com/apache/spark/commit/cf59b1f51c16301f689b4e0f17ba4dbd140e1b19
https://issues.apache.org/jira/browse/HIVE-9710
Exploit Issue Tracking Patch Vendor Advisory
https://issues.apache.org/jira/browse/HIVE-9710
https://issues.apache.org/jira/browse/SPARK-14987
Patch Vendor Advisory
https://issues.apache.org/jira/browse/SPARK-14987
https://lists.apache.org/thread/59r4mv7glrxpwkkdjvjbdljfpx3…
Mailing List Vendor Advisory
https://lists.apache.org/thread/59r4mv7glrxpwkkdjvjbdljfpx3f5zzc
https://lists.apache.org/thread/5o2ljnzrv8zvhjw9vy7b4rwjpc3…
Mailing List Vendor Advisory
https://lists.apache.org/thread/5o2ljnzrv8zvhjw9vy7b4rwjpc32hgfc