CVE-2023-40610 | Apache Superset up to 2.1.2 CTE authorization

Posted by Angelo Barbosa | Nov 27, 2023 | CVE

A vulnerability was found in Apache Superset up to 2.1.2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component CTE Handler. The manipulation leads to incorrect authorization.

This vulnerability is known as CVE-2023-40610. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-40610 | Apache Superset up to 2.1.2 CTE authorization

Related Posts

CVE-2024-9399 | Mozilla Thunderbird up to 128.2/130 WebTransport denial of service

CVE-2024-30104 | Microsoft unknown vulnerability

CVE-2023-4658 | GitLab Enterprise Edition prior 16.4.3/16.5.3/16.6.1 Allowed to Merge access control

CVE-2024-0446 | Autodesk AutoCAD/Advance Steel/Civil 3D STP File ASMKERN228A.dll out-of-bounds write