By default, stack traces for errors were enabled, which resulted in the exposure of internal traces on REST API endpoints to users. This vulnerability exists in Apache Superset versions up to and including 2.1.0.
Metrics
Affected Vendors & Products
References
History
Thu, 26 Sep 2024 16:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: apache
Published: 2023-09-06T12:58:59.791Z
Updated: 2024-09-26T15:23:54.656Z
Reserved: 2023-07-26T15:04:49.327Z
Link: CVE-2023-39264
Vulnrichment
Updated: 2024-08-02T18:02:06.790Z
NVD
Status : Modified
Published: 2023-09-06T13:15:08.927
Modified: 2024-11-21T08:15:00.773
Link: CVE-2023-39264
Redhat
No data.