CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Apache: >> Superset >> 4.1.0 Security Vulnerabilities

CVE-2025-27696

Incorrect Authorization vulnerability in Apache Superset allows ownership takeover of dashboards, charts or datasets by authenticated users with read permissions. This issue affects Apache Superset: through 4.1.1. Users are recommended to upgrade to version 4.1.2 or above, which fixes the issue.

CVSS Score

8.8

EPSS Score

0.001

Published

2025-05-13

Page 2

Vulnerabilities

Vulnerable Software

Apache: >> Superset >> 4.1.0 Security Vulnerabilities

Products

Pricing

Contact Us