anonhaven
Ad

CVE-2026-23983

LOW CVSS 4.0: 2.3 EPSS 0.04%
Updated Feb 25, 2026
Apache
Parameter Value
CVSS 2.3 (LOW)
Affected Versions before 6.0.0
Fixed In 6.0.0
Type CWE-200 (Information Exposure)
Vendor Apache
Public PoC No

A Sensitive Data Exposure vulnerability exists in Apache Superset allowing authenticated users to retrieve sensitive user information. The Tag endpoint (disabled by default) allows users to retrieve a list of objects associated with a specific tag. When these associated objects include Users, the API response improperly serializes and returns sensitive fields, including password hashes (pbkdf2), email addresses, and login statistics.

This vulnerability allows authenticated users with low privileges (e.g., Gamma role) to view sensitive authentication data This issue affects Apache Superset: before 6.0.0. Users are recommended to upgrade to version 6.0.0, which fixes the issue or make sure TAGGING_SYSTEM is False (Apache Superset current default)

Attack Parameters

Attack Vector
Network
Can be exploited remotely
Attack Complexity
Low
Easy to exploit
Attack Requirements
Present
Additional conditions required
Privileges Required
Low
Basic privileges needed
User Interaction
None
No user interaction needed

Impact Assessment

Confidentiality
Low
Partial data leak
Integrity
None
No data modification
Availability
None
No disruption

CVSS Vector v4.0

Weakness Type (CWE)

CWE-200 Information Exposure

Vulnerable Products 1

Configuration From (including) Up to (excluding)
Apache Superset
cpe:2.3:a:apache:superset:*:*:*:*:*:*:*:*
 6.0.0

References 2

https://lists.apache.org/thread/62mgbc5hc8026skp69kb6vqozj3pr5ww
security@apache.org
http://www.openwall.com/lists/oss-security/2026/02/24/7
af854a3a-2127-422b-91ae-364da2661108
Share Post Share Share Share

Related Vulnerabilities

CVE-2026-25219

Apache

6.5

CVE-2025-54550

Apache

8.1

CVE-2026-31924

Apache

5.3

CVE-2026-31923

Apache

7.5

CVE-2026-31908

Apache

9.1