PT-2024-9601 · Apache · Apache Superset
Daniel Gaspar
+1
·
Published
2024-12-12
·
Updated
2025-02-12
·
CVE-2024-55633
CVSS v4.0
7.1
High
| Vector | AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Apache Superset versions prior to 4.1.0
Description
The issue is related to improper authorization in Apache Superset, specifically affecting Postgres analytic databases. An attacker with access to SQLLab can craft a specially designed SQL DML statement that is incorrectly identified as a read-only query, allowing its execution and potentially enabling unauthorized write access. Non-Postgres analytics database connections and Postgres analytics database connections set with a readonly user are not vulnerable.
Recommendations
To resolve the issue, users are recommended to upgrade to version 4.1.0, which fixes the problem. As a temporary workaround, consider restricting access to SQLLab or setting up Postgres analytics database connections with a readonly user to minimize the risk of exploitation.
Fix
Incorrect Authorization
Improper Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Apache Superset