Vulnerabilities > Metabase > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-08-04 CVE-2023-37470 Code Injection vulnerability in Metabase
Metabase is an open-source business intelligence and analytics platform.
network
low complexity
metabase CWE-94
critical
9.8
2023-07-21 CVE-2023-38646 Unspecified vulnerability in Metabase
Metabase open source before 0.46.6.1 and Metabase Enterprise before 1.46.6.1 allow attackers to execute arbitrary commands on the server, at the server's privilege level.
network
low complexity
metabase
critical
9.8
2023-05-18 CVE-2023-32680 Missing Authentication for Critical Function vulnerability in Metabase
Metabase is an open source business analytics engine.
network
low complexity
metabase CWE-306
critical
9.6