Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Apache Superset RCE (CVE-2023-37941) #18351

Merged
merged 10 commits into from
Oct 12, 2023
Merged

Apache Superset RCE (CVE-2023-37941) #18351

merged 10 commits into from
Oct 12, 2023

Commits on Sep 13, 2023

  1. superset rce wip

    @h00die
    h00die committed Sep 13, 2023
    Configuration menu
    Copy the full SHA
    686d704 View commit details
    Browse the repository at this point in the history

Commits on Sep 14, 2023

  1. working hashes for apache superset rce

    @h00die
    h00die committed Sep 14, 2023
    Configuration menu
    Copy the full SHA
    619a46d View commit details
    Browse the repository at this point in the history

  2. still working on resetting values

    @h00die
    h00die committed Sep 14, 2023
    Configuration menu
    Copy the full SHA
    0c418fd View commit details
    Browse the repository at this point in the history

Commits on Sep 15, 2023

  1. still working on resetting values

    @h00die
    h00die committed Sep 15, 2023
    Configuration menu
    Copy the full SHA
    a8da47e View commit details
    Browse the repository at this point in the history

  2. superset rce more stable

    @h00die
    h00die committed Sep 15, 2023
    Configuration menu
    Copy the full SHA
    e34ed10 View commit details
    Browse the repository at this point in the history

Commits on Sep 21, 2023

  1. review comments

    @h00die
    h00die committed Sep 21, 2023
    Configuration menu
    Copy the full SHA
    77c299d View commit details
    Browse the repository at this point in the history

Commits on Oct 10, 2023

  1. Use an exec-in-place gadget for Python 

    This adds a Python deserialization gadget that will exec arbitrary
Python code in place. It is only compatible with Python 3.x due to
differences in Python's exec function and statement between 2 and 3.
    @smcintyre-r7
    smcintyre-r7 committed Oct 10, 2023
    Configuration menu
    Copy the full SHA
    59da286 View commit details
    Browse the repository at this point in the history

  2. Make the add_equals_to_base64 function private

    @smcintyre-r7
    smcintyre-r7 committed Oct 10, 2023
    Configuration menu
    Copy the full SHA
    47b0c01 View commit details
    Browse the repository at this point in the history

  3. Raise a more specific error message 

    Check for and raise a more specific error message when the internal
database fails to mount because the path is incorrect.
    @smcintyre-r7
    smcintyre-r7 committed Oct 10, 2023
    Configuration menu
    Copy the full SHA
    45be501 View commit details
    Browse the repository at this point in the history

Commits on Oct 11, 2023

  1. Merge pull request #25 from smcintyre-r7/pr/collab/18351 

    Pr/collab/18351
    @h00die
    h00die committed Oct 11, 2023
    Configuration menu
    Copy the full SHA
    862a793 View commit details
    Browse the repository at this point in the history