CVE-2023-46104 | Apache Superset up to 2.1.2/3.0.1 ZIP File resource consumption

Posted by Angelo Barbosa | Dec 19, 2023 | CVE

A vulnerability classified as critical was found in Apache Superset up to 2.1.2/3.0.1. This vulnerability affects unknown code of the component ZIP File Handler. The manipulation leads to resource consumption.

This vulnerability was named CVE-2023-46104. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-46104 | Apache Superset up to 2.1.2/3.0.1 ZIP File resource consumption

Related Posts

CVE-2024-23839 | Suricata up to 7.0.2 Traffic use after free

CVE-2023-41619 | Emlog Pro 2.1.14 article.php cross site scripting

CVE-2024-43412 | Xibo CMS up to 4.0.x Generic File Module cross site scripting (GHSA-336f-wrgx-57gg)

CVE-2024-23928 | Pioneer DMH-WT7600NEX Telematics certificate validation (ZDI-24-1045)