Information Disclosure Vulnerability in Apache Superset

Information Disclosure Vulnerability in Apache Superset

CVE-2023-42505 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

An authenticated user with read permissions on database connections metadata could potentially access sensitive information such as the connection's username. This issue affects Apache Superset before 3.0.0.

Learn more about our Cis Benchmark Audit For Apache Http Server.