We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-29945

Splunk Authentication Token Exposure in Debug Log in Splunk Enterprise



AssignerSplunk
Reserved2024-03-21
Published2024-03-27
Updated2024-10-30

Description

In Splunk Enterprise versions below 9.2.1, 9.1.4, and 9.0.9, the software potentially exposes authentication tokens during the token validation process. This exposure happens when either Splunk Enterprise runs in debug mode or the JsonWebToken component has been configured to log its activity at the DEBUG logging level.



HIGH: 7.2CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Product status

9.2 before 9.2.1
affected

9.1 before 9.1.4
affected

9.0 before 9.0.9
affected

Credits

Alex Napier, Splunk

References

https://advisory.splunk.com/advisories/SVD-2024-0301

https://research.splunk.com/application/9a67e749-d291-40dd-8376-d422e7ecf8b5

cve.org CVE-2024-29945

nvd.nist.gov CVE-2024-29945

Download JSON

Share this page
https://cve.threatint.com
Subscribe to our newsletter to learn more about our work.