Lucene search
China National Vulnerability DatabaseCNVD-2023-70276HistorySep 11, 2023 - 12:00 a.m.
Apache Superset Information Disclosure Vulnerability (CNVD-2023-70276)
2023-09-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
3
apache superset
data visualization
security vulnerability
python
stack trace error
remote attacker
sensitive information
cnvd-2023-70276
0.001 Low
EPSS
Percentile
28.2%
Apache Superset is an open source data visualization tool based on Python. A security vulnerability in the Apache Superset stack trace error handling can be exploited by a remote attacker to submit a special request that can obtain sensitive information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache superset | le | 2.1.0 |
Related
github
github
Apache Superset may expose internal traces on REST API endpoints
2023-09-06 15:30:26
osv
osv
CVE-2023-39264
2023-09-06 13:15:08
Apache Superset may expose internal traces on REST API endpoints
2023-09-06 15:30:26
prion
prion
Design/Logic Flaw
2023-09-06 13:15:00
cvelist
cvelist
CVE-2023-39264 Apache Superset: Stack traces enabled by default
2023-09-06 12:58:59
nvd
nvd
CVE-2023-39264
2023-09-06 13:15:08
cve
cve
CVE-2023-39264
2023-09-06 13:15:08