CVE-2025-48912 – apache-superset

Package

Manager: pip
Name: apache-superset
Vulnerable Version: >=0 <4.1.2

Severity

Level: High

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:U/RC:R

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

EPSS: 0.00084 pctl0.25391

Details

Apache Superset: Improper authorization bypass on row level security via SQL Injection An authenticated malicious actor using specially crafted requests could bypass row level security configuration by injecting SQL into 'sqlExpression' fields. This allowed the execution of sub-queries to evade parsing defenses ultimately granting unauthorized access to data. This issue affects Apache Superset: before 4.1.2. Users are recommended to upgrade to version 4.1.2, which fixes the issue.

Metadata

Created: 2025-05-30T09:30:27Z
Modified: 2025-06-03T01:10:36Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/05/GHSA-8w7f-8pr9-xgwj/GHSA-8w7f-8pr9-xgwj.json
CWE IDs: ["CWE-89"]
Alternative ID: GHSA-8w7f-8pr9-xgwj
Finding: F297
Auto approve: 1