CVE-2023-49734: Apache Superset: Privilege Escalation Vulnerability
First published: Tue Dec 19 2023(Updated: )
An authenticated Gamma user has the ability to create a dashboard and add charts to it, this user would automatically become one of the owners of the charts allowing him to incorrectly have write permissions to these charts.This issue affects Apache Superset: before 2.1.2, from 3.0.0 before 3.0.2. Users are recommended to upgrade to version 3.0.2 or 2.1.3, which fixes the issue.
Credit: security@apache.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| pip/apache-superset | >=3.0.0<3.0.2 | 3.0.2 |
| pip/apache-superset | <2.1.3 | 2.1.3 |
| <2.1.2 | ||
| >=3.0.0<3.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://nvd.nist.gov/vuln/detail/CVE-2023-49734
- https://lists.apache.org/thread/985h6ltvtbvdoysso780kkj7x744cds5
- https://github.com/apache/superset/pull/25843
- https://github.com/apache/superset/commit/5198279a2ba41ab3e89bd9d7750694179d3f9fe6
- https://github.com/apache/superset/commit/cb6de0a9c9f505ee3f26e79ca9bfa5f3901528a0
- http://www.openwall.com/lists/oss-security/2023/12/19/3
- https://github.com/advisories/GHSA-g49j-j489-3xpf (Advisory)
Frequently Asked Questions
What is the severity of CVE-2023-49734?
CVE-2023-49734 has been classified as a critical vulnerability due to its potential impact on user permissions.
How do I fix CVE-2023-49734?
To remediate CVE-2023-49734, upgrade Apache Superset to version 2.1.3 or 3.0.2 or later.
Who is affected by CVE-2023-49734?
CVE-2023-49734 affects authenticated Gamma users of Apache Superset versions prior to 2.1.3 and between 3.0.0 and 3.0.2.
What type of permissions are incorrectly granted due to CVE-2023-49734?
CVE-2023-49734 allows unauthorized write permissions to charts created by authenticated Gamma users.
Which versions of Apache Superset should I avoid due to CVE-2023-49734?
Avoid using Apache Superset versions prior to 2.1.3 and between 3.0.0 and 3.0.2 to mitigate CVE-2023-49734.
- collector/oss-sec
- alias/CVE-2023-49734
- agent/type
- agent/first-publish-date
- agent/title
- agent/references
- agent/weakness
- agent/severity
- collector/mitre-cve
- source/MITRE
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-g49j-j489-3xpf
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/author
- agent/source
- agent/trending
- collector/nvd-api
- source/NVD
- agent/softwarecombine
- agent/description
- agent/event
- collector/nvd-cve
- agent/tags
- collector/github-advisory
- package-manager/pip
- vendor/apache
- canonical/apache superset
- version/apache superset/3.0.0