Apache Superset Security Flaw: Insecure Default Settings Leave Servers Vulnerable to RCE Attacks
The maintainers of the open-source data visualization platform, Apache Superset, have announced critical security measures to address an insecure default configuration that exposes installations to potential remote code execution vulnerabilities. This security flaw, identified as CVE-2023-27524 with a notable CVSS score of 8.9, affects all versions up to 2.0.1 due…