CVE-2024-23945

moderate-risk

Published 2024-12-23

Signing cookies is an application security feature that adds a digital signature to cookie data to verify its authenticity and integrity. The signature helps prevent malicious actors from modifying the cookie value, which can lead to security vulnerabilities and exploitation. Apache Hive’s service component accidentally exposes the signed cookie to the end user when there is a mismatch in signature between the current and expected cookie. Exposing the correct cookie signature can lead to further exploitation. The vulnerable CookieSigner logic was introduced in Apache Hive by HIVE-9710 (1.2.0) and in Apache Spark by SPARK-14987 (2.0.0). The affected components are the following: * org.apache.hive:hive-service * org.apache.spark:spark-hive-thriftserver_2.11 * org.apache.spark:spark-hive-thriftserver_2.12

Do I need to act?

6.5% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.9/10 Medium

NETWORK / HIGH complexity

Affected Products (3)

Hive

Spark

Affected Vendors

Apache

References (9)

Product https://github.com/apache/hive

Patch https://github.com/apache/hive/commit/7638cb1a3b07713cc490aa2909a37037f89e08b4

Product https://github.com/apache/spark

Patch https://github.com/apache/spark/commit/cf59b1f51c16301f689b4e0f17ba4dbd140e1b19

Exploit https://issues.apache.org/jira/browse/HIVE-9710

Patch https://issues.apache.org/jira/browse/SPARK-14987

Mailing List https://lists.apache.org/thread/59r4mv7glrxpwkkdjvjbdljfpx3f5zzc

Mailing List https://lists.apache.org/thread/5o2ljnzrv8zvhjw9vy7b4rwjpc32hgfc

Mailing List http://www.openwall.com/lists/oss-security/2024/12/23/2

/ 100

moderate-risk

Severity 18/34 · Moderate

Exploitability 9/34 · Low

Exposure 9/34 · Low