Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:41 a.m.22 views

CVE-2024-55633

Improper Authorization vulnerability in Apache Superset. On Postgres analytic databases an attacker with SQLLab access can craft a specially designed SQL DML statement that is Incorrectly identified as a read-only query, enabling its execution. Non postgres analytics database connections and...

7.1CVSS7.4AI score0.02562EPSS
Exploits0References1
NVD
NVD
added 2024/12/12 3:15 p.m.60 views

CVE-2024-55633

Improper Authorization vulnerability in Apache Superset. On Postgres analytic databases an attacker with SQLLab access can craft a specially designed SQL DML statement that is Incorrectly identified as a read-only query, enabling its execution. Non postgres analytics database connections and...

7.1CVSS0.02562EPSS
Exploits0References2
Circl
Circl
added 2024/12/12 2:41 p.m.28 views

CVE-2024-55633

creationtimestamp| type| source ---|---|--- 2024-12-12 14:41:44+00:00| seen| https://infosec.exchange/users/cve/statuses/113640374538955423 2024-12-12 17:11:01+00:00| seen| https://t.me/cvedetector/12794 2025-02-12 11:08:40+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/4061 2025-02-14...

7.1CVSS4.8AI score0.02562EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/12/12 2:36 p.m.17 views

CVE-2024-55633 Apache Superset: SQLLab Improper readonly query validation allows unauthorized write access

Improper Authorization vulnerability in Apache Superset. On Postgres analytic databases an attacker with SQLLab access can craft a specially designed SQL DML statement that is Incorrectly identified as a read-only query, enabling its execution. Non postgres analytics database connections and...

7.1CVSS7.6AI score0.02562EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/12 2:36 p.m.50 views

CVE-2024-55633 Apache Superset: SQLLab Improper readonly query validation allows unauthorized write access

Improper Authorization vulnerability in Apache Superset. On Postgres analytic databases an attacker with SQLLab access can craft a specially designed SQL DML statement that is Incorrectly identified as a read-only query, enabling its execution. Non postgres analytics database connections and...

7.1CVSS0.02562EPSS
Exploits0References1
CVE
CVE
added 2024/12/12 2:36 p.m.91 views

CVE-2024-55633

CVE-2024-55633 is an Improper Authorization vulnerability in Apache Superset. An attacker with SQLLab access to a PostgreSQL analytic database can craft a SQL DML statement that is incorrectly identified as a read-only query, allowing its execution. The issue does not affect non-PostgreSQL analyt...

7.1CVSS7.2AI score0.02562EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/12/12 2:36 p.m.11 views

CVE-2024-55633 Apache Superset: SQLLab Improper readonly query validation allows unauthorized write access

Improper Authorization vulnerability in Apache Superset. On Postgres analytic databases an attacker with SQLLab access can craft a specially designed SQL DML statement that is Incorrectly identified as a read-only query, enabling its execution. Non postgres analytics database connections and...

7.1CVSS6.7AI score0.02562EPSS
Exploits0References4
Rows per page
Query Builder