0.001 Low
EPSS
Percentile
28.9%
An authenticated user with specific data permissions could access database connections stored passwords by requesting a specific REST API. This issue affects Apache Superset version 1.3.0 up to 2.0.1.
www.openwall.com/lists/oss-security/2023/04/24/3
github.com/apache/superset
lists.apache.org/thread/s9w9w10mt2sngk3solwnmq5k7md53tsz
nvd.nist.gov/vuln/detail/CVE-2023-30776