KEV Entry
CVE-2023-27524
Known Exploited Vulnerability Entry External Catalog
Entry Details
Confirmed Exploited2024-01-08 00:00 UTC
Timestamps
2024-01-08
2024-01-08
Scope
KEVIntel entry: Apache Superset: Session validation vulnerability when using provided default SECRET_KEY | Affected: Apache Software Foundation / Apache Superset | CVSS: 8.9 (HIGH) | Used in malware: unknown | Not yet in CISA KEV: False
References
- {'id': 'CVE-2023-27524', 'url': 'https://www.cve.org/CVERecord?id=CVE-2023-27524'}
- {'id': 'kevintel', 'url': 'https://kevintel.com/vuln/CVE-2023-27524'}
5f74ef54-e488-4849-8489-b497c59f840b
caeb2787-0d58-4236-9039-7c86c3e566f3
2026-06-19 12:46 UTC
2026-06-19 12:46 UTC
Evidence
1| Type | Source | Signal | Confidence | Details | GCVE Metadata |
|---|---|---|---|---|---|
| public_report | kevintel | successful_exploitation | 0.70 |
View details |
- |