Filtered by vendor Apache
Subscriptions
Filtered by product Superset
Subscriptions
Total
45 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2023-42504 | 1 Apache | 1 Superset | 2024-11-20 | 5.8 Medium |
An authenticated malicious user could initiate multiple concurrent requests, each requesting multiple dashboard exports, leading to a possible denial of service. This issue affects Apache Superset: before 3.0.0 | ||||
CVE-2023-30776 | 1 Apache | 1 Superset | 2024-10-21 | 4.9 Medium |
An authenticated user with specific data permissions could access database connections stored passwords by requesting a specific REST API. This issue affects Apache Superset version 1.3.0 up to 2.0.1. | ||||
CVE-2023-25504 | 1 Apache | 1 Superset | 2024-10-21 | 4.9 Medium |
A malicious actor who has been authenticated and granted specific permissions in Apache Superset may use the import dataset feature in order to conduct Server-Side Request Forgery attacks and query internal resources on behalf of the server where Superset is deployed. This vulnerability exists in Apache Superset versions up to and including 2.0.1. | ||||
CVE-2024-23952 | 1 Apache | 1 Superset | 2024-10-17 | 6.5 Medium |
This is a duplicate for CVE-2023-46104. With correct CVE version ranges for affected Apache Superset. Uncontrolled resource consumption can be triggered by authenticated attacker that uploads a malicious ZIP to import database, dashboards or datasets. This vulnerability exists in Apache Superset versions up to and including 2.1.2 and versions 3.0.0, 3.0.1. | ||||
CVE-2023-27525 | 1 Apache | 1 Superset | 2024-10-15 | 3.1 Low |
An authenticated user with Gamma role authorization could have access to metadata information using non trivial methods in Apache Superset up to and including 2.0.1 | ||||
CVE-2023-37941 | 1 Apache | 1 Superset | 2024-09-27 | 6.6 Medium |
If an attacker gains write access to the Apache Superset metadata database, they could persist a specifically crafted Python object that may lead to remote code execution on Superset's web backend. The Superset metadata db is an 'internal' component that is typically only accessible directly by the system administrator and the superset process itself. Gaining access to that database should be difficult and require significant privileges. This vulnerability impacts Apache Superset versions 1.5.0 up to and including 2.1.0. Users are recommended to upgrade to version 2.1.1 or later. | ||||
CVE-2023-39265 | 1 Apache | 1 Superset | 2024-09-27 | 3.8 Low |
Apache Superset would allow for SQLite database connections to be incorrectly registered when an attacker uses alternative driver names like sqlite+pysqlite or by using database imports. This could allow for unexpected file creation on Superset webservers. Additionally, if Apache Superset is using a SQLite database for its metadata (not advised for production use) it could result in more severe vulnerabilities related to confidentiality and integrity. This vulnerability exists in Apache Superset versions up to and including 2.1.0. | ||||
CVE-2023-36387 | 1 Apache | 1 Superset | 2024-09-26 | 5.4 Medium |
An improper default REST API permission for Gamma users in Apache Superset up to and including 2.1.0 allows for an authenticated Gamma user to test database connections. | ||||
CVE-2023-32672 | 1 Apache | 1 Superset | 2024-09-26 | 4.3 Medium |
An Incorrect authorisation check in SQLLab in Apache Superset versions up to and including 2.1.0. This vulnerability allows an authenticated user to query tables that they do not have proper access to within Superset. The vulnerability can be exploited by leveraging a SQL parsing vulnerability. | ||||
CVE-2023-27526 | 1 Apache | 1 Superset | 2024-09-26 | 4.3 Medium |
A non Admin authenticated user could incorrectly create resources using the import charts feature, on Apache Superset up to and including 2.1.0. | ||||
CVE-2023-36388 | 1 Apache | 1 Superset | 2024-09-26 | 4.3 Medium |
Improper REST API permission in Apache Superset up to and including 2.1.0 allows for an authenticated Gamma users to test network connections, possible SSRF. | ||||
CVE-2023-27523 | 1 Apache | 1 Superset | 2024-09-26 | 5 Medium |
Improper data authorization check on Jinja templated queries in Apache Superset up to and including 2.1.0 allows for an authenticated user to issue queries on database tables they may not have access to. | ||||
CVE-2023-39264 | 1 Apache | 1 Superset | 2024-09-26 | 4.3 Medium |
By default, stack traces for errors were enabled, which resulted in the exposure of internal traces on REST API endpoints to users. This vulnerability exists in Apache Superset versions up to and including 2.1.0. | ||||
CVE-2023-46104 | 1 Apache | 1 Superset | 2024-09-16 | 6.5 Medium |
Uncontrolled resource consumption can be triggered by authenticated attacker that uploads a malicious ZIP to import database, dashboards or datasets. This vulnerability exists in Apache Superset versions up to and including 2.1.2 and versions 3.0.0, 3.0.1. | ||||
CVE-2023-42501 | 1 Apache | 1 Superset | 2024-08-29 | 4.3 Medium |
Unnecessary read permissions within the Gamma role would allow authenticated users to read configured CSS templates and annotations. This issue affects Apache Superset: before 2.1.2. Users should upgrade to version or above 2.1.2 and run `superset init` to reconstruct the Gamma role or remove `can_read` permission from the mentioned resources. | ||||
CVE-2018-8021 | 1 Apache | 1 Superset | 2024-08-05 | N/A |
Versions of Superset prior to 0.23 used an unsafe load method from the pickle library to deserialize data leading to possible remote code execution. Note Superset 0.23 was released prior to any Superset release under the Apache Software Foundation. | ||||
CVE-2019-12414 | 1 Apache | 1 Superset | 2024-08-04 | 5.3 Medium |
In Apache Incubator Superset before 0.32, a user can view database names that he has no access to on a dropdown list in SQLLab | ||||
CVE-2019-12413 | 1 Apache | 1 Superset | 2024-08-04 | 5.3 Medium |
In Apache Incubator Superset before 0.31 user could query database metadata information from a database he has no access to, by using a specially crafted complex query. | ||||
CVE-2020-13948 | 1 Apache | 1 Superset | 2024-08-04 | 8.8 High |
While investigating a bug report on Apache Superset, it was determined that an authenticated user could craft requests via a number of templated text fields in the product that would allow arbitrary access to Python’s `os` package in the web application process in versions < 0.37.1. It was thus possible for an authenticated user to list and access files, environment variables, and process information. Additionally it was possible to set environment variables for the current process, create and update files in folders writable by the web process, and execute arbitrary programs accessible by the web process. All other operations available to the `os` package in Python were also available, even if not explicitly enumerated in this CVE. | ||||
CVE-2020-13952 | 1 Apache | 1 Superset | 2024-08-04 | 8.1 High |
In the course of work on the open source project it was discovered that authenticated users running queries against Hive and Presto database engines could access information via a number of templated fields including the contents of query description metadata database, the hashed version of the authenticated users’ password, and access to connection information including the plaintext password for the current connection. It would also be possible to run arbitrary methods on the database connection object for the Presto or Hive connection, allowing the user to bypass security controls internal to Superset. This vulnerability is present in every Apache Superset version < 0.37.2. |