Lucene search
China National Vulnerability DatabaseCNVD-2023-72237HistorySep 11, 2023 - 12:00 a.m.
Apache Superset Authorization Issues Vulnerability
2023-09-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
apache superset
authorization
vulnerability
sqllab
data visualization
data exploration
query tables
EPSS
0.001
Percentile
47.0%
Apache Superset is a data visualization and data exploration platform from the Apache (USA) Foundation. Apache Superset version 2.1.0 and prior versions have an authorization issue vulnerability that stems from incorrect authorization checks in SQLLab. An attacker can exploit the vulnerability to query tables in the superset that they cannot properly access.
Related
veracode
veracode
Missing Authorization
2023-09-12 08:13:50
nvd
nvd
CVE-2023-32672
2023-09-06 14:15:10
osv
osv
CVE-2023-32672
2023-09-06 14:15:10
Apache Superset has incorrect authorization check
2023-09-06 15:30:27
vulnrichment
vulnrichment
cve
cve
CVE-2023-32672
2023-09-06 14:15:10
github
github
Apache Superset has incorrect authorization check
2023-09-06 15:30:27
prion
prion
Design/Logic Flaw
2023-09-06 14:15:00
cvelist
cvelist