CVE-2023-27524: Apache Superset's Authentication Bypass and RCE

CVE-2023-27524: Apache Superset's Authentication Bypass and RCE

Ákos Jakab

1 год назад

824 Просмотров
PoC for CVE-2023-27524: Apache Superset's Authentication Bypass and RCE.

Apache Superset versions up to and including 2.0.1 are susceptible to a critical session validation vulnerability. Installations that have not modified the default SECRET_KEY configuration as per installation instructions are at risk. Attackers can exploit this vulnerability to authenticate and gain access to unauthorized resources. Superset administrators who have changed the default SECRET_KEY value are not affected by this vulnerability.

This video PoC was created for a CVE analysis www.vicarius.io/vsociety

Repo:https://github.com/jakabakos/CVE-2023-27524-Apache-Superset-Auth-Bypass-and-RCE
Ссылки и html тэги не поддерживаются

Комментарии:

Сейчас смотрят
CVE-2023-27524: Apache Superset's Authentication Bypass and RCE 01:05
CVE-2023-27524: Apache Superset's Authentication Bypass and RCE Ákos Jakab
Humara Sindh Pakistan#india #sindhpakistan #thar #pakistanvillagelife #trending 00:12
Humara Sindh Pakistan#india #sindhpakistan #thar #pakistanvillagelife #trending SHEHRI VILLAGER
САМЫЙ СПОКОЙНЫЙ МУВИК В ОБНОВЛЕНИИ 0.30.0? 1:35
САМЫЙ СПОКОЙНЫЙ МУВИК В ОБНОВЛЕНИИ 0.30.0? CheZz? So2
Navanly: Russia's Lost Hope (2024) FULL BIOGRAPHY DOCUMENTARY | HD 1:21:36
Navanly: Russia's Lost Hope (2024) FULL BIOGRAPHY DOCUMENTARY | HD Docuflix + Free Movies & TV
Debate competition | city life Vs village life | Raghvendra Pal 5:15
Debate competition | city life Vs village life | Raghvendra Pal English With Raghvendra
PS5 SSD einbauen! PlayStation 5 SSD Erweiterung einbauen und einrichten! PS5 Speicher erweitern! 4:56
PS5 SSD einbauen! PlayStation 5 SSD Erweiterung einbauen und einrichten! PS5 Speicher erweitern! ConFace
13 Minutes Of The Funniest TikToks! 12:24
13 Minutes Of The Funniest TikToks! Meme Algorithm
Премьер-министр Беларуси: ситуация в экономике стабильная и управляемая 3:22
Премьер-министр Беларуси: ситуация в экономике стабильная и управляемая АТН: новости Беларуси и мира
Insane Obstacle Course High Speed Jumps and Crashes - BeamNG Drive 1:05:50
Insane Obstacle Course High Speed Jumps and Crashes - BeamNG Drive Car Base
تخصص إدارة الأعمال | طريقك إلى عالم المال والأعمال 3:58
تخصص إدارة الأعمال | طريقك إلى عالم المال والأعمال ShadowTube Green
10 "Bus Horn & Om Nelle Turning" Sound Variations in 61 Seconds 1:01
10 "Bus Horn & Om Nelle Turning" Sound Variations in 61 Seconds Kazzmo Show
10 "Bus Horn & Om Nom" Sound Variations in 61 Seconds 1:01
10 "Bus Horn & Om Nom" Sound Variations in 61 Seconds trash videos