CVE-2024-24772 | Apache Superset up to 3.0.3/3.1.0 Chart Data REST API information disclosure

Posted by Angelo Barbosa | Feb 28, 2024 | CVE

A vulnerability was found in Apache Superset up to 3.0.3/3.1.0 and classified as problematic. This issue affects some unknown processing of the component Chart Data REST API. The manipulation leads to information disclosure.

The identification of this vulnerability is CVE-2024-24772. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-24772 | Apache Superset up to 3.0.3/3.1.0 Chart Data REST API information disclosure

Related Posts

CVE-2024-23525 | Spreadsheet::ParseXLSX up to 0.29 on Perl XML::Twig no_xxe xml external entity reference (Issue 10)

CVE-2024-31317 | Google Android 12/12L/13/14 ZygoteProcess.java WRITE_SECURE_SETTINGS deserialization

CVE-2024-26475 | Radare2 up to 5.8.6 grub_sfs_read_extent denial of service

CVE-2024-7986 | Rockwell ThinManager ThinServer path traversal (ZDI-24-1156)