Bartosz Galaszewski

**Name of the Vulnerable Software and Affected Versions** Apache Superset versions prior to 4.1.0 **Description** The issue is related to the generation of error messages containing analytics metadata information in Apache Superset. This can allow a remote attacker to gain unauthorized access to protected information. Users are recommended to upgrade to a version that fixes the issue. **Recommendations** For versions prior to 4.1.0, upgrade to version 4.1.0 to resolve the issue. As a temporary workaround, consider restricting access to error messages that may contain sensitive analytics metadata information until the upgrade is applied.