Apache Superset - CVE CyberSecurity Database News (Page 2)

CVE-2023-36387 - An In-Depth Analysis of an Improper Default REST API Permission for Gamma Users in Apache Superset (Up to and Including 2.1.) That Allows Testing Database Connections

Abstract: Apache Superset is a popular open-source data exploration and visualization platform. Improper default REST API permissions for Gamma users can lead to a significant

Sep 6, 2023 API Exploit Apache Apache Software Foundation Apache Superset

CVE-2023-39264: Apache Superset Information Disclosure Vulnerability through Enabled Stack Traces

A recently discovered security vulnerability, identified as CVE-2023-39264, has been found to affect Apache Superset, the popular open-source Business Intelligence and Data Visualization web application.

Apr 24, 2023 Exploit SQL Apache Apache Software Foundation Apache Superset

CVE-2023-27524 - Session Validation Attacks in Apache Superset: How They Work, How to Patch, and Protecting Your Data

The open-source data visualization and business intelligence tool, Apache Superset, is affected by a vulnerability identified as CVE-2023-27524. This vulnerability allows attackers to authenticate and

Apr 17, 2023 SQL Apache Apache Software Foundation Apache Superset

CVE-2023-25504 - Apache Superset Import Dataset Vulnerability Allowing SSRF Attacks by Authenticated Attackers

A newly discovered vulnerability (CVE-2023-25504) in Apache Superset enables an attacker to conduct Server-Side Request Forgery (SSRF) attacks once they have been authenticated and provided