Unauthorized Access to Metadata Information in Apache Superset 2.0.1

Unauthorized Access to Metadata Information in Apache Superset 2.0.1

CVE-2023-27525 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

An authenticated user with Gamma role authorization could have access to metadata information using non trivial methods in Apache Superset up to and including 2.0.1

Learn more about our Cis Benchmark Audit For Apache Http Server.