Wind River Support Network

Description

A stored cross-site scripting (XSS) vulnerability exists in Apache Superset before 3.0.3. An authenticated attacker with create/update permissions on charts or dashboards could store a script or add a specific HTML snippet that would act as a stored XSS. For 2.X versions, users should change their config to include: TALISMAN_CONFIG = {     content_security_policy: {         base-uri: [\'self\'],         default-src: [\'self\'],         img-src: [\'self\', blob:, data:],         worker-src: [\'self\', blob:],         connect-src: [             \'self\',             https://api.mapbox.com https://api.mapbox.com ;,             https://events.mapbox.com https://events.mapbox.com ;,         ],         object-src: \'none\',         style-src: [             \'self\',             \'unsafe-inline\',         ],         script-src: [\'self\', \'strict-dynamic\'],     },     content_security_policy_nonce_in: [script-src],     force_https: False,     session_cookie_secure: False, }

Find out more about CVE-2023-49657 from the MITRE-CVE dictionary and NIST NVD

---

Products Affected

Login may be required to access defects or downloads.

Related Products

Notes
Requires LTSS - customers must have active LTSS (Long Term Security Shield) Support to receive up-to-date information about vulnerabilities that may affect legacy software. Please contact your Wind River account team or see https://docs.windriver.com/bundle/Support_and_Maintenance_Supplemental_Terms_and_Conditions and https://support2.windriver.com/index.php?page=plc for more information.