CVE-2023-30776
published 2023-04-24CVE-2023-30776: An authenticated user with specific data permissions could access database connections stored passwords by requesting a specific REST API. This issue affects…
medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
An authenticated user with specific data permissions could access database connections stored passwords by requesting a specific REST API. This issue affects Apache Superset version 1.3.0 up to 2.0.1.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | superset | 1.3.0 – 2.0.1 | — |
| apache_software_foundation | apache_superset | 1.3.0 – 2.0.1 | — |