SB2024022837 - Multiple vulnerabilities in Apache Superset

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2024022837

SB2024022837 - Multiple vulnerabilities in Apache Superset

Published: February 28, 2024

Security Bulletin ID SB2024022837
Severity
Low
Patch available
YES
Number of vulnerabilities 5
Exploitation vector Remote access
Highest impact Information disclosure

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 5 secuirty vulnerabilities.


1) Improper access control (CVE-ID: CVE-2024-26016)

The vulnerability allows a remote user to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions. A remote user can bypass implemented security restrictions and import an existing dashboard or chart.


2) Improper access control (CVE-ID: CVE-2024-24779)

The vulnerability allows a remote user to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions when creating a new dataset. A remote attacker can bypass implemented security restrictions and gain unauthorized access to the application.


3) Information exposure through externally-generated error message (CVE-ID: CVE-2024-24772)

The vulnerability allows a remote user to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output by the application while handling error conditions in chart data REST API. A remote user can obtain sensitive information on the system.


4) Permissions, Privileges, and Access Controls (CVE-ID: CVE-2024-24773)

The vulnerability allows a remote user to gain access to sensitive information.

The vulnerability exists due to insufficient validation of user-supplied input when handling nested SQL statements in SQLLab. A remote user can use a specially crafted SQL statement to bypass implemented authorization restrictions and gain access to sensitive information in the database.

5) Error Handling (CVE-ID: CVE-2024-27315)

The vulnerability allows a remote user to gain access to sensitive information.

The vulnerability exists due to improper error handling. A remote user with privileges to create Alerts on Alerts & Reports has the capability to generate a specially crafted SQL statement that triggers an error on the database.



Remediation

Install update from vendor's website.

References