Improper data authorization check on Jinja templated queries in Apache SupersetĀ up to and including 2.1.0 allows for an authenticated user to issue queries on database tables they may not have access to.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apache
Published: 2023-09-06T12:55:31.286Z
Updated: 2024-08-02T12:16:35.538Z
Reserved: 2023-03-02T12:54:40.810Z
Link: CVE-2023-27523
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-09-06T13:15:08.017
Modified: 2023-09-11T13:46:08.797
Link: CVE-2023-27523
Redhat
No data.