3 matches found
CVE-2023-23628
Metabase is an open source data analytics platform. Affected versions are subject to Exposure of Sensitive Information to an Unauthorized Actor. Sandboxed users shouldn't be able to view data about other Metabase users anywhere in the Metabase application. However, when a sandbox user views the...
CVE-2023-23628 Metabase subject to Exposure of Sensitive Information to an Unauthorized Actor
Metabase is an open source data analytics platform. Affected versions are subject to Exposure of Sensitive Information to an Unauthorized Actor. Sandboxed users shouldn't be able to view data about other Metabase users anywhere in the Metabase application. However, when a sandbox user views the...
CVE-2023-23628
Metabase information disclosure CVE-2023-23628 affects sandboxed users who view dashboard subscription settings and can see the recipients list when another user added recipients. Root cause is an exposure of user data to unauthorized actors within the application. Impact is restricted to viewing...