CVE-2024-24772 - Guest User Vulnerability in Apache Superset Chart Data REST API Leads to Information Disclosure
Author: [Your_Name_here]
*<br>Date: [Date_here]<br>*
Summary: Apache Superset is vulnerable to an information disclosure issue where a
CVE-2024-24779: Unauthorized Data Access Vulnerability in Apache Superset with Custom Roles and Insufficient Data Access Permissions
In this long-read post, we will delve into the details of CVE-2024-24779, a security vulnerability that affects Apache Superset, a popular open-source data exploration and
CVE-2024-26016: Unauthorized Access to and Modification of Dashboard and Chart Metadata in Apache Superset
The CVE-2024-26016 vulnerability has been identified in Apache Superset, which is a widely used open-source, enterprise-ready data insights platform that allows users to create and
CVE-2024-24773 - Bypassing Data Authorization by Exploiting Improper Parsing of Nested SQL Statements in SQLLab (Apache Superset)
The vulnerability (CVE-2024-24773) is found in Apache Superset, a popular open-source platform for data visualization. The issue allows authenticated users to bypass their data authorization
CVE-2023-36388 - Exploiting Improper REST API Permission in Apache Superset (Up To and Including v2.1.) for Possible SSRF Attack
A recent vulnerability, CVE-2023-36388, has been discovered in Apache Superset up to and including version 2.1.. This vulnerability occurs due to improper REST API
Episode
00:00:00
00:00:00