Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-46104
HistoryDec 19, 2023 - 10:15 a.m.

Code injection

2023-12-1910:15:00
PRIOn knowledge base
www.prio-n.com
3
code injection
apache superset
vulnerability
nvd
database
dashboards
datasets

6.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

50.9%

JSON

Uncontrolled resource consumption can be triggered by authenticated attacker that uploads a malicious ZIP to import database, dashboards or datasets.  
This vulnerability exists in Apache Superset versions up to and including 2.1.2 and versions 3.0.0, 3.0.1.

CPENameOperatorVersion
supersetlt2.1.3
supersetge3.0.0
supersetlt3.0.1

Related

nvd 2
cve 2
veracode 1
osv 2
github 2
cvelist 2
prion 1
nvd
nvd
CVE-2023-46104
2023-12-19 10:15:07
CVE-2024-23952
2024-02-14 12:15:47
cve
cve
CVE-2023-46104
2023-12-19 10:15:07
CVE-2024-23952
2024-02-14 12:15:47
veracode
veracode
Denial Of Service (DoS)
2023-12-20 09:48:38
osv
osv
Apache Superset uncontrolled resource consumption
2023-12-19 12:30:19
CVE-2023-46104
2023-12-19 10:15:07
github
github
Apache Superset uncontrolled resource consumption
2023-12-19 12:30:19
Duplicate Advisory: Apache Superset uncontrolled resource consumption
2024-05-30 20:53:33
cvelist
cvelist
CVE-2023-46104 Apache Superset: Allows for uncontrolled resource consumption via a ZIP bomb
2023-12-19 09:30:53
CVE-2024-23952 Apache Superset: Allows for uncontrolled resource consumption via a ZIP bomb (version range fix for CVE-2023-46104)
2024-02-14 11:09:47
prion
prion
Code injection
2024-02-14 12:15:00

6.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

50.9%

JSON
Related for PRION:CVE-2023-46104
nvd2cve2veracode1osv2github2cvelist2prion1