An authenticated user with read permissions on database connections metadata could potentially access sensitive information such as the connection's username.
This issue affects Apache Superset before 3.0.0.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apache
Published: 2023-11-28T16:26:58.326Z
Updated: 2024-08-02T19:23:38.893Z
Reserved: 2023-09-11T12:34:12.410Z
Link: CVE-2023-42505
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-11-28T17:15:08.093
Modified: 2024-11-21T08:22:41.330
Link: CVE-2023-42505
Redhat
No data.