CVE-2019-12414

Summary

In Apache Incubator Superset before 0.32, a user can view database names that he has no access to on a dropdown list in SQLLab

Affected Software

VendorProductVersion RangeStatus
n/aApache Incubator SupersetApache Incubator Superset 0.0.0 to 0.31.0affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References