CVE-2024-27097
Potential log injection in reset user endpoint in ckanA user endpoint didn't perform filtering on an incoming parameter, which was added directly to the application log. This could lead to an attacker injecting false log entries or corrupt the log file format. This has been fixed in the CKAN versions 2.9.11 and 2.10.4. Users are advised to upgrade. Users unable to upgrade should override the `/user/reset` endpoint to filter the `id` parameter in order to exclude newlines.
We have discovered 262 live websites that are affected by CVE-2024-27097.
Affected Software
| Product |  Ckan |
| Category | Content Management System |
| Vulnerable Domains | 262 live websites (64% of Ckan install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 40 versions ( 77% of all versions) |
Common Weakness Enumeration
CWE-532 Insertion of Sensitive Information into Log FileDetails
- Published - Mar 13, 2024
- Updated - Aug 21, 2024
CVE References
CWE References
CWE
Website Distribution by Country
Number of websites using CVE-2024-27097 United States | 50 websites |
 Brazil | 29 websites |
 Italy | 25 websites |
 Argentina | 22 websites |
 Spain | 21 websites |
 Germany | 12 websites |
 France | 11 websites |
 Greece | 10 websites |
 Japan | 9 websites |
 Canada | 5 websites |
Website Distribution by TLD
Number of websites using CVE-2024-27097| .org | 34 websites |
| .it | 23 websites |
| .es | 13 websites |
| .eu | 12 websites |
| .jp | 8 websites |
| .de | 7 websites |
| .fr | 5 websites |
| .ca | 5 websites |
| .com | 5 websites |
| .io | 3 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2024-27097
Top websites that are affected by CVE-2024-27097. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ****.***.ua |  Ukraine | ***,*** | |
| ********.swiss | United States | ***,*** | |
| ****.***.ro |  Romania | ***,*** | |
| *****.***.ar | Argentina | ***,*** | |
| ****.*******.ca | Canada | ***,*** | |
| *******.**.gov | United States | ***,*** | |
| *******.***.gr | Greece | ***,*** | |
| ****.**************.it | Italy | ***,*** | |
| ***********.*****.***.br | Brazil | ***,*** | |
| ****.**************.it | Italy | ***,*** |
FAQ
CVE-2024-27097 is Insertion of Sensitive Information into Log File in Ckan
A total of 262 websites have been identified as vulnerable to CVE-2024-27097, based on global website indexing conducted by WebTechSurvey.
The Ckan is affected by the CVE-2024-27097 vulnerability.
Ckan versions up to 2.10.4 are vulnerable to CVE-2024-27097.
CVE-2024-27097 is resolved in version 2.10.4 of Ckan.