CVE-2023-42505
An authenticated user with read permissions on database connections metadata could potentially access sensitive information such as the connection’s username. This issue affects Apache Superset before 3.0.0.
Date published : 2023-11-28
https://lists.apache.org/thread/bd0fhtfzrtgo1q8x35tpm8ms144d1t2y