CVE-2023-40610

Name of the Vulnerable Software and Affected Versions Apache Superset versions up to but excluding 2.1.2

Description The issue is related to an improper authorization check, which could lead to possible privilege escalation. Using the default examples database connection, an attacker could access both the examples schema and Apache Superset's metadata database. By utilizing a specially crafted CTE SQL statement, an attacker could modify data on the metadata database, potentially tampering with authentication and authorization data.

Recommendations For versions up to but excluding 2.1.2, update to version 2.1.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the default examples database connection to minimize the risk of exploitation. Additionally, restrict the use of CTE SQL statements in the metadata database until the issue is resolved.