CVE-2024-11217

A vulnerability was found in the OAuth-server. OAuth-server logs the OAuth2 client secret when the logLevel is Debug higher for OIDC/GitHub/GitLab/Google IDPs login options.
Configurations

No configuration.

History

No history.

Information

Published : 2024-11-15 21:15

Updated : 2024-11-18 17:11


NVD link : CVE-2024-11217

Mitre link : CVE-2024-11217

CVE.ORG link : CVE-2024-11217


JSON object : View

Products Affected

No product.

CWE
CWE-1295

Debug Messages Revealing Unnecessary Information