Lucene search
Veracode Vulnerability DatabaseVERACODE:7700HistoryNov 08, 2018 - 3:39 a.m.
Remote Code Execution (RCE)
2018-11-0803:39:47
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
EPSS
0.948
Percentile
99.3%
superset is vulnerable to a remote code execution (RCE) attack. The library does not properly handle the deserialization of .pickle files, allowing a malicious user to inject and execute arbitrary code through it.
Related
packetstorm
packetstorm
Apache Superset 0.23 Remote Code Execution
2018-12-04 00:00:00
zdt
zdt
Apache Superset 0.23 - Remote Code Execution Exploit
2018-12-03 00:00:00
osv
osv
PYSEC-2018-74
2018-11-07 14:29:00
Deserialization of Untrusted Data in superset
2018-11-09 17:40:56
CVE-2018-8021
2018-11-07 14:29:00
prion
prion
Remote code execution
2018-11-07 14:29:00
cve
cve
CVE-2018-8021
2018-11-07 14:29:00
exploitpack
exploitpack
Apache Superset 0.23 - Remote Code Execution
2018-12-03 00:00:00
github
github
Deserialization of Untrusted Data in superset
2018-11-09 17:40:56
checkpoint_advisories
checkpoint_advisories
Apache Superset 0.23 Remote Code Execution (CVE-2018-8021)
2018-12-27 00:00:00
cvelist
cvelist
CVE-2018-8021
2018-11-07 14:00:00
nvd
nvd
CVE-2018-8021
2018-11-07 14:29:00
exploitdb
exploitdb
Apache Superset < 0.23 - Remote Code Execution
2018-12-03 00:00:00