CLEANSTART-2026-EN66750

See a problem?
Import Source
https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-EN66750.json
JSON Data
https://api.osv.dev/v1/vulns/CLEANSTART-2026-EN66750
Upstream
  • CVE-2026-40192
  • CVE-2026-42308
  • CVE-2026-42309
  • CVE-2026-42310
  • CVE-2026-42311
  • CVE-2026-45409
  • CVE-2026-48522
  • CVE-2026-48524
  • CVE-2026-48525
  • CVE-2026-48526
  • ghsa-5xmw-vc9v-4wf2
  • ghsa-65pc-fj4g-8rjx
  • ghsa-cfh3-3jmp-rvhc
  • ghsa-pwv6-vv43-88gr
  • ghsa-r73j-pqj5-w3x7
  • ghsa-whj4-6x5x-4v2j
  • ghsa-wjx4-4jcj-g98j
Published
2026-06-10T00:46:54.779122Z
Modified
2026-06-22T09:45:13.441393009Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing
Details

Multiple security vulnerabilities affect the apache-superset package. Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. See references for individual vulnerability details.

References

Affected packages

CleanStart / apache-superset

Package

Name
apache-superset

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.0.0-r5

Database specific

source 
"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-EN66750.json"