metabase Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by metabase
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
CVE Vulnerability in Metabase Affected by Unsafe H2 Connection Properties
CVE-2026-59826MetabaseMetabase9.1CRITICALDeserialization Flaw in Metabase's H2 Database Connection
CVE-2026-59827MetabaseMetabase9.9CRITICALRemote Code Execution in Metabase Enterprise Affecting Open Source Business Intelligence Tool
CVE-2026-33725MetabaseMetabase7.2HIGHData Exposure Vulnerability in Metabase by Metabase
CVE-2026-27464MetabaseMetabase7.7HIGHMetabase vulnerable to remote code execution via POST /api/setup/validate API endpoint
CVE-2023-37470MetabaseMetabase10CRITICALRemote Code Execution Vulnerability in Metabase by Metabase
CVE-2023-38646MetabaseMetabaseπΎπ‘EPSS 97%9.8CRITICALMetabase vulnerable to Remote Code Execution via H2
CVE-2022-39361MetabaseMetabase8.8HIGHMetabase vulnerable to arbitrary SQL execution from queryhash
CVE-2022-39362MetabaseMetabase8.8HIGHDatabase bypassing any permissions in Metabase via SQlite attach
CVE-2022-24854MetabaseMetabase8HIGHXSS vulnerability in Metabase
CVE-2022-24855MetabaseMetabase8.7HIGHGeoJSON URL validation can expose server files and environment variables to unauthorized users
CVE-2021-41277MetabaseMetabaseπΎπ‘EPSS 97%π¦ 10CRITICAL