Apache Superset BI
@apache_superset_bi
Версия 2.1.1 закрывает ряд уязвимостей.
Подробности в статьях:
▫️https://thehackernews.com/2023/09/alert-apache-superset-vulnerabilities.html
▫️https://securityboulevard.com/2023/09/apache-superset-part-ii-rce-credential-harvesting-and-more/ (в РФ с VPN, эта статья более подробная)
Подробности в статьях:
▫️https://thehackernews.com/2023/09/alert-apache-superset-vulnerabilities.html
▫️https://securityboulevard.com/2023/09/apache-superset-part-ii-rce-credential-harvesting-and-more/ (в РФ с VPN, эта статья более подробная)
Security Boulevard
Apache Superset Part II: RCE, Credential Harvesting and More
Apache Superset is a popular open source data exploration and visualization tool. In a previous post, we disclosed a vulnerability, CVE-2023-27524, affecting thousands of Superset servers on the Internet, that enables unauthorized attackers to gain admin access to these servers. We also alluded to methods that an attacker, logged in as an admin, could use The post Apache Superset Part II: RCE, Credential Harvesting and More appeared first on Horizon3.ai.
7 1.6K
Обсуждение 0
Обсуждение не доступно в веб-версии. Чтобы написать комментарий, перейдите в приложение Telegram.
Обсудить в Telegram