Unauthorized Resource Creation Vulnerability in Apache Superset 2.1.0

Unauthorized Resource Creation Vulnerability in Apache Superset 2.1.0

CVE-2023-27526 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

A non Admin authenticated user could incorrectly create resources using the import charts feature, on Apache Superset up to and including 2.1.0. 

Learn more about our Cis Benchmark Audit For Apache Http Server.