Vulnerability CVE-2023-27526


Published: 2023-09-06

Description:
A non Admin authenticated user could incorrectly create resources using the import charts feature, on Apache Superset up to and including 2.1.0. 

Type:

CWE-863

(Incorrect Authorization)

 References:
https://lists.apache.org/thread/ndww89yl2jd98lvn23n9cj722lfdg8dv

Copyright 2026, cxsecurity.com

 

Back to Top