Miggo Logo
Miggo Vulnerability Database
CVE-2019-12413

CVE-2019-12413: Users able to query database metadata in Apache Superset

5.3

CVSS Score
3.1

Basic Information

CVE ID
CVE-2019-12413
GHSA ID
GHSA-p5w7-qmq6-pmjr
EPSS Score
0.70393%
CWE
CWE-200
Published
2/26/2020
Updated
9/5/2024
KEV Status
No
Technology
TechnologyPython

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
apache-supersetpip< 0.31.00.31.0

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from insufficient access control in metadata query handling. While exact patch details are unavailable, Superset's architecture suggests two likely candidates: 1) Schema/metadata retrieval functions (like get_all_table_names_in_schema) that didn't validate user permissions on the target database. 2) The SQL execution endpoint (SqlApiView) that processed raw queries without applying the same database access checks used in other UI contexts. The medium confidence reflects the lack of direct commit evidence, but aligns with the described attack vector and Superset's component structure.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

In *p**** In*u**tor Sup*rs*t ***or* *.** us*r *oul* qu*ry **t***s* m*t***t* in*orm*tion *rom * **t***s* ** **s no ****ss to, *y usin* * sp**i*lly *r**t** *ompl*x qu*ry.

Reasoning

T** vuln*r**ility st*ms *rom insu**i*i*nt ****ss *ontrol in m*t***t* qu*ry **n*lin*. W*il* *x**t p*t** **t*ils *r* un*v*il**l*, Sup*rs*t's *r**it**tur* su***sts two lik*ly **n*i**t*s: *) S***m*/m*t***t* r*tri*v*l *un*tions (lik* **t_*ll_t**l*_n*m*s_i