• caglararli@hotmail.com
  • 05386281520

CVE-2024-39887 | Apache Apache Superset up to 4.0.1 sql injection

Çağlar Arlı      -    17 Views

CVE-2024-39887 | Apache Apache Superset up to 4.0.1 sql injection

A vulnerability, which was classified as critical, was found in Apache Apache Superset up to 4.0.1. Affected is the function version/query_to_xml/inet_server_addr/inet_client_addr. The manipulation leads to sql injection. This vulnerability is traded as CVE-2024-39887. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.