CVE-2019-12413

Summary

In Apache Incubator Superset before 0.31 user could query database metadata information from a database he has no access to, by using a specially crafted complex query.

Affected Software

VendorProductVersion RangeStatus
n/aApache Incubator SupersetApache Incubator Superset 0.0.0 to 0.29.0affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References