Apache Superset - CVE CyberSecurity Database News

Feb 28, 2024 API Exploit SQL Apache Apache Software Foundation Apache Superset

CVE-2024-24772 - Guest User Vulnerability in Apache Superset Chart Data REST API Leads to Information Disclosure

Author: [Your_Name_here] *<br>Date: [Date_here]<br>* Summary: Apache Superset is vulnerable to an information disclosure issue where a

Feb 28, 2024 Exploit SQL Apache Apache Software Foundation Apache Superset

CVE-2024-24779: Unauthorized Data Access Vulnerability in Apache Superset with Custom Roles and Insufficient Data Access Permissions

In this long-read post, we will delve into the details of CVE-2024-24779, a security vulnerability that affects Apache Superset, a popular open-source data exploration and

Feb 28, 2024 Exploit Apache Apache Software Foundation Apache Superset

CVE-2024-26016: Unauthorized Access to and Modification of Dashboard and Chart Metadata in Apache Superset

The CVE-2024-26016 vulnerability has been identified in Apache Superset, which is a widely used open-source, enterprise-ready data insights platform that allows users to create and

Feb 28, 2024 SQL Apache Apache Software Foundation Apache Superset

CVE-2024-24773 - Bypassing Data Authorization by Exploiting Improper Parsing of Nested SQL Statements in SQLLab (Apache Superset)

The vulnerability (CVE-2024-24773) is found in Apache Superset, a popular open-source platform for data visualization. The issue allows authenticated users to bypass their data authorization

Sep 6, 2023 API Exploit Apache Apache Software Foundation Apache Superset

CVE-2023-36388 - Exploiting Improper REST API Permission in Apache Superset (Up To and Including v2.1.) for Possible SSRF Attack

A recent vulnerability, CVE-2023-36388, has been discovered in Apache Superset up to and including version 2.1.. This vulnerability occurs due to improper REST API