Apache Superset has an unauthorized access vulnerability (CVE-2023-27524) detailed utilization process

Enterprise 2023-08-26 00:29:54 views: null

Article directory

Apache Superset has an unauthorized access vulnerability (CVE-2023-27524) detailed utilization process

Disclaimer: Do not use the relevant technologies in this article to engage in illegal testing. Any direct or indirect consequences and losses caused by the dissemination and use of the information or tools provided in this article shall be borne by the user himself. Adverse consequences have nothing to do with the article author. This article is for educational purposes only.

1. Introduction to Apache Superset

WeChat official account search: Nanfeng Vulnerability Reappearance Library
This article was first published on the Nanfeng Vulnerability Reproduction Library official account

Apache Superset is a data visualization and data exploration platform of the Apache Foundation.

2. Vulnerability description

Apache Superset is a data visualization and data exploration platform of the Apache Foundation. Apache Superset 2.0.1 and earlier versions have security vulnerabilities. An attacker could exploit this vulnerability to authenticate and access unauthorized resources.

CVE ID: CVE-2023-27524
CNNVD ID: CNNVD-202304-1915
CNVD ID:

3. Affect the version

Apache Superset 2.0.1 and earlier
Apache Superset has an unauthorized access vulnerability (CVE-2023-27524) detailed utilization process

4. fofa query statement

“Apache Superset”

5. Vulnerability recurrence

Vulnerability exploitation tool: https://github.com/horizon3ai/CVE-2023-27524
Download the software:
Then execute the following command, -u followed by the address you want to detect.

python3 CVE-2023-27524.py -u http://127.0.0.1/ --validate
If there is a vulnerability, a cookie value will be exploded here
Apache Superset has an unauthorized access vulnerability (CVE-2023-27524) detailed utilization process

Then visit the vulnerable url, use brupsuite to truncate the data packet, and replace the cookie value exploded above.
After the replacement, release the data packet and successfully log in to the Apache Superset management background
Apache Superset has an unauthorized access vulnerability (CVE-2023-27524) detailed utilization process

Apache Superset has an unauthorized access vulnerability (CVE-2023-27524) detailed utilization process

6.POC&EXP

If github cannot be opened, you can obtain the exploit program by
following the official account Nanfeng Vulnerability Reproduction Library and replying to Vulnerability Reproduction 29
to get the download address of the POC tool:
Apache Superset has an unauthorized access vulnerability (CVE-2023-27524) detailed utilization process

7. Rectification opinions

At present, the manufacturer has released an upgrade patch to fix the vulnerability. The link to obtain the patch is: https://lists.apache.org/thread/n0ftx60sllf527j7g11kmt24wvof8xyk

8. Past review

Guess you like

Origin blog.csdn.net/nnn2188185/article/details/130478979
Recommended
Ranking
error: (-215:Assertion failed) !_img.empty() in function ‘cv::imwrite‘
Database migration between Navicat servers
Minimum number of rotation of the array: Array
balenaEtcher for mac (make a boot disk software) v1.5.67
Custom processing serialization and deserialization in jackson
Mu-en-mask system development software
Mastering Regular Expressions
Find mileage Java--
Web pages can not directly concern the public micro-channel number how to do? A key to arouse public concern number of micro-channel solutions
[CodeForces - 739B] Alyona and a tree Tree + [difference] + bipartite
Daily
More
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)
2024-05-03(8)

Code World

© 2018 codetd.com