Ntt Data

**Name of the Vulnerable Software and Affected Versions** Apache Superset versions up to and including 2.1.0 **Description** A non-admin authenticated user could incorrectly create resources using the import charts feature. **Recommendations** For Apache Superset versions up to and including 2.1.0, update to a version later than 2.1.0 to resolve the issue. As a temporary workaround, consider restricting access to the import charts feature for non-admin users until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Apache Superset versions up to and including 2.0.1 **Description** An authenticated user with Gamma role authorization could have access to metadata information using non-trivial methods. **Recommendations** For Apache Superset versions up to and including 2.0.1, update to a version later than 2.0.1 to resolve the issue.