A bypass of the DISALLOWED_SQL_FUNCTIONS security feature in Apache Superset allows for the execution of blocked SQL functions. An attacker can use a special inline block to circumvent the denylist. This allows a user with SQL Lab access to execute functions that were intended to be disabled, leading to the disclosure of sensitive database information like the software version.
This issue affects Apache Superset: before 5.0.0.
Users are recommended to upgrade to version 5.0.0, which fixes the issue.
                
            Metrics
Affected Vendors & Products
References
        History
                    Mon, 18 Aug 2025 18:30:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| CPEs | cpe:2.3:a:apache:superset:*:*:*:*:*:*:*:* | |
| Metrics | cvssV3_1 
 | 
Fri, 15 Aug 2025 08:30:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Apache Apache superset | |
| Vendors & Products | Apache Apache superset | 
Thu, 14 Aug 2025 14:15:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Metrics | ssvc 
 | 
Thu, 14 Aug 2025 13:30:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Description | A bypass of the DISALLOWED_SQL_FUNCTIONS security feature in Apache Superset allows for the execution of blocked SQL functions. An attacker can use a special inline block to circumvent the denylist. This allows a user with SQL Lab access to execute functions that were intended to be disabled, leading to the disclosure of sensitive database information like the software version. This issue affects Apache Superset: before 5.0.0. Users are recommended to upgrade to version 5.0.0, which fixes the issue. | |
| Title | Apache Superset: Improper SQL authorisation, parse not checking for specific engine functions | |
| Weaknesses | CWE-89 | |
| References |  | |
| Metrics | cvssV4_0 
 | 
 MITRE
                        MITRE
                    Status: PUBLISHED
Assigner: apache
Published: 2025-08-14T13:18:10.535Z
Updated: 2025-08-14T13:49:51.691Z
Reserved: 2025-08-13T13:02:25.259Z
Link: CVE-2025-55674
 Vulnrichment
                        Vulnrichment
                    Updated: 2025-08-14T13:49:44.255Z
 NVD
                        NVD
                    Status : Analyzed
Published: 2025-08-14T14:15:34.743
Modified: 2025-08-18T18:25:25.880
Link: CVE-2025-55674
 Redhat
                        Redhat
                    No data.