Lucene search
China National Vulnerability DatabaseCNVD-2023-05217HistoryJan 18, 2023 - 12:00 a.m.
Apache Superset Access Control Error Vulnerability (CNVD-2023-05217)
2023-01-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
apache superset
access control
vulnerability
data visualization
data exploration
apache foundation
rest api
cnvd-2023-05217
EPSS
0.001
Percentile
49.3%
An access control error vulnerability exists in Apache Superset, a data visualization and data exploration platform from the Apache Foundation, which stems from improper access controls and could be exploited by an unauthenticated attacker to access dashboard configuration metadata using the REST API Get endpoint .
Related
github
github
Apache Superset has Improper Access Control
2023-01-16 12:30:17
prion
prion
Default configuration
2023-01-16 11:15:00
osv
osv
CVE-2022-45438
2023-01-16 11:15:10
Apache Superset has Improper Access Control
2023-01-16 12:30:17
cvelist
cvelist
CVE-2022-45438 Apache Superset: Dashboard metadata information leak
2023-01-16 10:12:02
cve
cve
CVE-2022-45438
2023-01-16 11:15:10
veracode
veracode
Improper Access Control
2023-01-19 10:46:35
nvd
nvd
CVE-2022-45438
2023-01-16 11:15:10