Uncontrolled resource consumption can be triggered by authenticated attacker that uploads a malicious ZIP to import database, dashboards or datasets.
This vulnerability exists in Apache Superset versions up to and including 2.1.2 and versions 3.0.0, 3.0.1.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apache
Published: 2023-12-19T09:30:53.790Z
Updated: 2024-09-16T18:43:58.519Z
Reserved: 2023-10-16T15:16:18.770Z
Link: CVE-2023-46104
Vulnrichment
Updated: 2024-08-02T20:37:39.352Z
NVD
Status : Modified
Published: 2023-12-19T10:15:07.517
Modified: 2024-02-14T14:16:06.587
Link: CVE-2023-46104
Redhat
No data.