Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/02/13 8:41 p.m.8 views

CVE-2024-23952

This is a duplicate for CVE-2023-46104. With correct CVE version ranges for affected Apache Superset. Uncontrolled resource consumption can be triggered by authenticated attacker that uploads a malicious ZIP to import database, dashboards or datasets. This vulnerability exists in Apache Superset...

6.5CVSS6AI score0.01699EPSS
Exploits0References1
OSV
OSV
added 2025/02/05 7:26 a.m.11 views

BIT-SUPERSET-2023-46104 Apache Superset: Allows for uncontrolled resource consumption via a ZIP bomb

Uncontrolled resource consumption can be triggered by authenticated attacker that uploads a malicious ZIP to import database, dashboards or datasets. This vulnerability exists in Apache Superset versions up to and including 2.1.2 and versions 3.0.0, 3.0.1...

6.5CVSS6.1AI score0.01653EPSS
Exploits0References5
NVD
NVD
added 2024/02/14 12:15 p.m.23 views

CVE-2024-23952

This is a duplicate for CVE-2023-46104. With correct CVE version ranges for affected Apache Superset. Uncontrolled resource consumption can be triggered by authenticated attacker that uploads a malicious ZIP to import database, dashboards or datasets. This vulnerability exists in Apache Superset...

6.5CVSS6.2AI score0.01699EPSS
Exploits0References3
CNVD
CNVD
added 2023/12/21 12:0 a.m.11 views

Apache Superset Denial of Service Vulnerability

Apache Superset is a data visualization and data exploration platform from the Apache USA Foundation. A denial of service vulnerability exists in Apache Superset, which can be exploited by an authenticated attacker to upload a malicious ZIP for importing databases, dashboards, or datasets,...

6.5CVSS6.5AI score0.01653EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2023/12/19 12:30 p.m.23 views

Apache Superset uncontrolled resource consumption

Uncontrolled resource consumption can be triggered by authenticated attacker that uploads a malicious ZIP to import database, dashboards or datasets. This vulnerability exists in Apache Superset versions up to and including 2.1.2 and versions 3.0.0, 3.0.1...

6.5CVSS6.1AI score0.01653EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2023/12/19 10:15 a.m.16 views

CVE-2023-46104

Uncontrolled resource consumption can be triggered by authenticated attacker that uploads a malicious ZIP to import database, dashboards or datasets. This vulnerability exists in Apache Superset versions up to and including 2.1.2 and versions 3.0.0, 3.0.1...

6.5CVSS6.1AI score
Exploits0References4
OSV
OSV
added 2022/07/17 11:15 p.m.4 views

CVE-2022-30981

An issue was discovered in Gentics CMS before 5.43.1. By uploading a malicious ZIP file, an attacker is able to deserialize arbitrary data and hence can potentially achieve Java code execution...

8.8CVSS7.5AI score0.01132EPSS
Exploits2References1
Rows per page
Query Builder