Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-51753

Nov. 6, 2024, 6:17 p.m.

Tags

security-advisories@github.com
CWE-532
2024-11-05
CVE-2024-51753

Product(s) Impacted

AuthKit library for Remix

  • 0.4.1

Description

The AuthKit library for Remix provides convenient helpers for authentication and session management using WorkOS & AuthKit with Remix. In affected versions refresh tokens are logged to the console when the disabled by default `debug` flag, is enabled. This issue has been patched in version 0.4.1. All users are advised to upgrade. There are no known workarounds for this vulnerability.

Weaknesses

CWE-532
Insertion of Sensitive Information into Log File

Information written to log files can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information.

CWE ID: 532

Date

Published: Nov. 5, 2024, 8:15 p.m.

Last Modified: Nov. 6, 2024, 6:17 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security-advisories@github.com

References

https://github.com/ security-advisories@github.com
https://github.com/ security-advisories@github.com
https://github.com/ security-advisories@github.com