CVE-2021-27907
MEDIUM5.4EPSS 2.5%Apache Superset stored XSS on Dashboard markdown
Published: 5/24/2022Modified: 5/20/2025
Description
Apache Superset up to and including 0.38.0 allowed the creation of a Markdown component on a Dashboard page for describing chart's related information. Abusing this functionality, a malicious user could inject javascript code executing unwanted action in the context of the user's browser. The javascript code will be automatically executed (Stored XSS) when a legitimate user surfs on the dashboard page. The vulnerability is exploitable creating a “div” section and embedding in it a “svg” element with javascript code.
Affected packages (3)
- Bitnami/supersetfrom 0, < 0.38.1
- PyPI/apache-supersetfrom 0, < 0.38.1
- PyPI/apache-supersetfrom 0, < 0.38.1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.4 | CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
References (6)
- ADVISORYhttps://github.com/advisories/GHSA-w358-rj93-r5qv
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2021-27907
- PATCHhttps://github.com/apache/superset
- WEBhttps://github.com/pypa/advisory-database/tree/main/vulns/apache-superset/PYSEC-2021-127.yaml
- WEBhttps://lists.apache.org/thread.html/r09293fb09f1d617f0d2180c42210e739e2211f8da9bc5c1873bea67a@%3Cdev.superset.apache.org%3E
- WEBhttps://lists.apache.org/thread.html/r09293fb09f1d617f0d2180c42210e739e2211f8da9bc5c1873bea67a%40%3Cdev.superset.apache.org%3E