CLEANSTART-2026-FT24360

See a problem?
Import Source
https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-FT24360.json
JSON Data
https://api.osv.dev/v1/vulns/CLEANSTART-2026-FT24360
Upstream
  • CVE-2026-28684
  • CVE-2026-41205
  • CVE-2026-44307
  • CVE-2026-44431
  • CVE-2026-44432
  • CVE-2026-4539
  • CVE-2026-45409
  • CVE-2026-48522
  • CVE-2026-48524
  • CVE-2026-48525
  • CVE-2026-48526
  • ghsa-2h4p-vjrc-8xpq
  • ghsa-5239-wwwm-4pmq
  • ghsa-65pc-fj4g-8rjx
  • ghsa-68rp-wp8r-4726
  • ghsa-mf9v-mfxr-j63j
  • ghsa-mf9w-mj56-hr94
  • ghsa-qccp-gfcp-xxvc
  • ghsa-v92g-xgxw-vvmm
Published
2026-06-10T01:08:55.464614Z
Modified
2026-06-22T09:45:12.031587299Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
Flask is a web server gateway interface (WSGI) web application framework
Details

Multiple security vulnerabilities affect the apache-superset package. Flask is a web server gateway interface (WSGI) web application framework. See references for individual vulnerability details.

References

Affected packages

CleanStart / apache-superset

Package

Name
apache-superset

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.0.0-r7

Database specific

source 
"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-FT24360.json"