Thousands of publicly-exposed Apache Superset installs exposed to RCE attacks | allinfosecnews.com

April 26, 2023, 1:34 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Apache Superset open-source data visualization platform is affected by an insecure default configuration that could lead to remote code execution. Apache Superset is an open-source data visualization and data exploration platform. The maintainers of the software have released security patches to address an insecure default configuration, tracked as CVE-2023-27524 (CVSS score: 8.9), that could lead to remote […]

The post Thousands of publicly-exposed Apache Superset installs exposed to RCE attacks appeared first on Security Affairs.

address apache apache superset attacks breaking news code code execution configuration cve cvss data data visualization default exposed hacking information security news insecure it information security maintainers patches pierluigi paganini platform rce remote code remote code execution score security software source data superset visualization

More from securityaffairs.co / Security Affairs

CISA adds Cisco ASA and FTD and CrushFTP VFS flaws to its Known Exploited Vulnerabilities … 7 hours ago | securityaffairs.co

actor agency asa breaking news +28

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog 14 hours ago | securityaffairs.co

agency breaking news catalog cisa +29

DOJ arrested the founders of crypto mixer Samourai for facilitating $2 Billion in illegal transactions 14 hours ago | securityaffairs.co

arrest arrested bitcoin breaking news +23

Google fixed critical Chrome vulnerability CVE-2024-4058 19 hours ago | securityaffairs.co

attacker breaking news browser can +22

Nation-state actors exploited two zero-days in ASA and FTD firewalls to breach government networks 1 day, 7 hours ago | securityaffairs.co

actor adaptive security apt arcanedoor +32

Hackers hijacked the eScan Antivirus update mechanism in malware campaign 1 day, 13 hours ago | securityaffairs.co

antivirus avast backdoors breaking news +27

US offers a $10 million reward for information on four Iranian nationals 1 day, 20 hours ago | securityaffairs.co

10 million assets breaking news contractors +26

The street lights in Leicester City cannot be turned off due to a cyber attack 1 day, 21 hours ago | securityaffairs.co

attack authority breaking news city +14

North Korea-linked APT groups target South Korean defense contractors 2 days, 8 hours ago | securityaffairs.co

agency andariel apt apt groups +29

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Regional Leader, Cyber Crisis Communications

@ Google | United Kingdom

View on infosec-jobs.com

Regional Intelligence Manager, Compliance, Safety and Risk Management

@ Google | London, UK

View on infosec-jobs.com

Senior Analyst, Endpoint Security

@ Scotiabank | Toronto, ON, CA, M1K5L1

View on infosec-jobs.com

Software Engineer, Security/Privacy, Google Cloud

@ Google | Bengaluru, Karnataka, India

View on infosec-jobs.com

Senior Security Engineer

@ Coinbase | Remote - USA

View on infosec-jobs.com