Vulnerability CVE-2023-30776
Published: 2023-04-24

Description:
An authenticated user with specific data permissions could access database connections stored passwords by requesting a specific REST API. This issue affects Apache Superset version 1.3.0 up to 2.0.1.

Type:

CWE-200

 (Information Exposure)

 References:
https://lists.apache.org/thread/s9w9w10mt2sngk3solwnmq5k7md53tsz
Copyright 2026, cxsecurity.com

 

Back to Top