CVE-2024-26016 | Apache Superset up to 3.0.3/3.1.0 Dashboard Import authorization

Inserito da Angelo Barbosa | Feb 28, 2024 | CVE

A vulnerability was found in Apache Superset up to 3.0.3/3.1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Dashboard Import Handler. The manipulation leads to incorrect authorization.

This vulnerability is handled as CVE-2024-26016. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-26016 | Apache Superset up to 3.0.3/3.1.0 Dashboard Import authorization

Post correlati

CVE-2024-0366 | Starbox Plugin up to 3.4.7 on WordPress resource injection

CVE-2024-32085 | AitThemes Citadela Listing Plugin up to 5.18.1 on WordPress cross-site request forgery

CVE-2024-41659 | usememos up to 0.20.1 cross-domain policy (GHSL-2024-034)

CVE-2019-25159 | mpedraza2020 Intranet del Monterroso up to 4.50.0 config/cargos.php dni_profe sql injection