CVE-2023-32672

An Incorrect authorisation check in SQLLab in Apache Superset versions up to and including 2.1.0. This vulnerability allows an authenticated user to query tables that they do not have proper access to within Superset. The vulnerability can be exploited by leveraging a SQL parsing vulnerability.

CVSS v3 4.3 MEDIUM

4.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://lists.apache.org/thread/ococ6nlj80f0okkwfwpjczy3q84j3wkp	Vendor Advisory
https://lists.apache.org/thread/ococ6nlj80f0okkwfwpjczy3q84j3wkp	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:apache:superset:*:*:*:*:*:*:*:*

History

21 Nov 2024, 08:03

Type	Values Removed	Values Added
References	~~() https://lists.apache.org/thread/ococ6nlj80f0okkwfwpjczy3q84j3wkp - Vendor Advisory~~	() https://lists.apache.org/thread/ococ6nlj80f0okkwfwpjczy3q84j3wkp - Vendor Advisory

12 Sep 2023, 14:45

Type	Values Removed	Values Added
First Time		Apache Apache superset
CPE		cpe:2.3:a:apache:superset::::::::
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 4.3
References	~~(MISC) https://lists.apache.org/thread/ococ6nlj80f0okkwfwpjczy3q84j3wkp -~~	(MISC) https://lists.apache.org/thread/ococ6nlj80f0okkwfwpjczy3q84j3wkp - Vendor Advisory

06 Sep 2023, 14:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-09-06 14:15

Updated : 2024-11-21 08:03

NVD link : CVE-2023-32672

Mitre link : CVE-2023-32672

CVE.ORG link : CVE-2023-32672

JSON object : View

Products Affected

apache

superset

CWE

CWE-863

Incorrect Authorization

{"id": "CVE-2023-32672", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security@apache.org", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.8}]}, "published": "2023-09-06T14:15:10.297", "references": [{"url": "https://lists.apache.org/thread/ococ6nlj80f0okkwfwpjczy3q84j3wkp", "tags": ["Vendor Advisory"], "source": "security@apache.org"}, {"url": "https://lists.apache.org/thread/ococ6nlj80f0okkwfwpjczy3q84j3wkp", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "security@apache.org", "description": [{"lang": "en", "value": "CWE-863"}]}], "descriptions": [{"lang": "en", "value": "An Incorrect authorisation check in SQLLab in Apache Superset versions up to and including 2.1.0. This vulnerability allows an authenticated user to query tables that they do not have proper access to within Superset. The vulnerability can be exploited by leveraging a SQL parsing vulnerability.\n\n"}, {"lang": "es", "value": "Una comprobaci\u00f3n de autorizaci\u00f3n incorrecta en SQLLab en las versiones de Apache Superset hasta 2.1.0 incluida. Esta vulnerabilidad permite a un usuario autenticado consultar tablas a las que no tiene acceso adecuado dentro de Superset. La vulnerabilidad puede ser explotada aprovechando una vulnerabilidad de an\u00e1lisis SQL."}], "lastModified": "2024-11-21T08:03:49.267", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:apache:superset:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A5C7318E-1118-457F-A2BC-8B9400AE7C3C", "versionEndIncluding": "2.1.0"}], "operator": "OR"}]}], "sourceIdentifier": "security@apache.org"}