CVE-2024-51753
Nov. 6, 2024, 6:17 p.m.
Tags
Product(s) Impacted
AuthKit library for Remix
- 0.4.1
Description
The AuthKit library for Remix provides convenient helpers for authentication and session management using WorkOS & AuthKit with Remix. In affected versions refresh tokens are logged to the console when the disabled by default `debug` flag, is enabled. This issue has been patched in version 0.4.1. All users are advised to upgrade. There are no known workarounds for this vulnerability.
Weaknesses
CWE-532
Insertion of Sensitive Information into Log File
Information written to log files can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information.
CWE ID: 532Date
Published: Nov. 5, 2024, 8:15 p.m.
Last Modified: Nov. 6, 2024, 6:17 p.m.
Status : Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
security-advisories@github.com