Описание
Apache Superset Exposure of Sensitive Information to an Unauthorized Actor vulnerability
An authenticated user with read permissions on database connections metadata could potentially access sensitive information such as the connection's username.
This issue affects Apache Superset before 3.0.0.
Пакеты
Наименование
apache-superset
pip
Затронутые версииВерсия исправления
< 3.0.0
3.0.0
Связанные уязвимости
CVSS3: 4.3
nvd
около 2 лет назад
An authenticated user with read permissions on database connections metadata could potentially access sensitive information such as the connection's username. This issue affects Apache Superset before 3.0.0.