CVE-2021-41972

Insufficiently Protected Credentials in pypi/superset

Identifiers

CVE-2021-41972

Package Slug

pypi/superset

Vulnerability

Insufficiently Protected Credentials

Description

Apache Superset allows for database connections to leak passwords for authenticated users. This information could be accessed in a non-trivial way.

Affected Versions

All versions up to 1.3.1

Solution

Unfortunately, there is no solution available yet.

Last Modified

2021-11-18

source