admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-06 02:31:35 +00:00
Code Issues Packages Projects Releases Wiki Activity
GobyVuls/CVE-2023-27524.md
Goby bf4e6cb5eb
Create CVE-2023-27524.md 
add CVE-2023-27524
2023-05-22 19:03:38 +08:00

2.2 KiB
Raw Blame History

Apache Superset Permission Bypass Vulnerability (CVE-2023-27524)

Vulnerability Apache Superset Permission Bypass Vulnerability (CVE-2023-27524)
Chinese name Apache Superset 权限绕过漏洞CVE-2023-27524
CVSS core 8.9
FOFA Query (click to view the results directly) [(title="Superset" && (body="appbuilder" || body="<img src="https://joinsuperset.com/img/supersetlogovector.svg")) || body="<a href="https://manage.app-sdx.preset.io" class="button">Back to workspaces</a></section>" || (body="/static/assets/dist/common.644ae7ae973b00abc14b.entry.js" || (body="/static/assets/images/favicon.png" && body="/static/appbuilder/js/jquery-latest.js") && body="Superset") || header="/superset/welcome/" || title="500: Internal server error
Number of assets affected 43325
Description Apache Superset is a data visualization and data exploration platform of the Apache Foundation. Apache Superset versions 2.0.1 and earlier have security vulnerabilities. Attackers exploit this vulnerability to verify and access unauthorized resources.
Impact Attackers can exploit this vulnerability to verify and access unauthorized resources.