Cross-Site Request Forgery Vulnerability in Apache Superset REST API Endpoints

Cross-Site Request Forgery Vulnerability in Apache Superset REST API Endpoints

CVE-2022-43719 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Two legacy REST API endpoints for approval and request access are vulnerable to cross site request forgery. This issue affects Apache Superset version 1.5.2 and prior versions and version 2.0.0.

Learn more about our Cis Benchmark Audit For Apache Http Server.