Apache Superset is a data visualization and data exploration platform from the Apache (USA) Foundation. Apache Superset version 2.1.0 and prior versions suffer from an authorization issue vulnerability that stems from incorrect REST API permissions. An attacker can exploit this vulnerability to cause a server-side request forgery attack.