CVE-2023-42505
published 2023-11-28CVE-2023-42505: An authenticated user with read permissions on database connections metadata could potentially access sensitive information such as the connection's username…
medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
An authenticated user with read permissions on database connections metadata could potentially access sensitive information such as the connection's username.
This issue affects Apache Superset before 3.0.0.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | superset | < 3.0.0 | 3.0.0 |
| apache_software_foundation | apache_superset | < 3.0.0 | 3.0.0 |