All 4 CVE vulnerabilities found in redash, with AI-generated Chinese analysis, references, and POCs.
Vendor: getredash
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-5874 | Redash getattr python.py run_query sandbox CWE-265 | 4.6 | Medium | 2025-06-09 |
| CVE-2021-43780 | Server-Side Request Forgery (SSRF) in Redash CWE-918 | 6.8 | Medium | 2021-11-23 |
| CVE-2021-41192 | Insecure default configuration CWE-1188 | 8.1 | High | 2021-11-23 |
| CVE-2021-43777 | Vulnerability in Redash OAuth2 flows due to misuse of state field (should be a nonce) CWE-352 | 6.8 | Medium | 2021-11-23 |
All 4 known CVE vulnerabilities affecting redash with full Chinese analysis, references, and POCs where available.