======================================================================

                               CERT-Renater

                    Note d'Information No. 2024/VULN526
_____________________________________________________________________

DATE                : 16/12/2024

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Apache Superset
                       versions prior to 4.1.0.

=====================================================================
https://lists.apache.org/thread/2x6550phfvbklckv5vl2w90rcqsdroq2
_____________________________________________________________________

CVE-2024-55633: Apache Superset: SQLLab Improper readonly query
validation allows unauthorized write access

Affected versions:

- Apache Superset before 4.1.0

Description:

Improper Authorization vulnerability in Apache Superset. On Postgres
analytic databases an attacker with SQLLab access can craft a
specially designed SQL DML statement that is Incorrectly identified
as a read-only query, enabling its execution. Non postgres analytics
database connections and postgres analytics database connections set
with a readonly user (advised) are not vulnerable.
This issue affects Apache Superset: before 4.1.0.

Users are recommended to upgrade to version 4.1.0, which fixes
the issue.


Credit:

Beto de Almeida (remediation developer)
Daniel Gaspar (coordinator)
James Ford (Striveworks) (finder)


References:

https://superset.apache.org
https://www.cve.org/CVERecord?id=CVE-2024-55633




=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================