CVE-2021-43777

Name of the Vulnerable Software and Affected Versions: Redash versions 10.0 and prior

Description: The implementation of Google Login in Redash incorrectly uses the state parameter to pass the next URL to redirect the user to after login, instead of using it for a Cross-Site Request Forgery (CSRF) token. This issue does not affect users who do not use Google Login for their instance of Redash. A patch addresses this by replacing Flask-Oauthlib with Authlib, which automatically provides and validates a CSRF token for the state variable, and stores the next URL on the user session object.

Recommendations: For Redash versions 10.0 and prior, update to a version that includes the patch in the master and release/10.x.x branches to replace Flask-Oauthlib with Authlib. As a temporary workaround, consider disabling Google Login to mitigate the vulnerability.