THREATOPS
THREAT OPSCVEs › CVE-2021-41277

CVE-2021-41277 — Metabase GeoJSON API Local File Inclusion Vulnerability

CISA KEVExploited: confirmedMetabase

Metabase contains a local file inclusion vulnerability in the custom map support in the API to read GeoJSON formatted data.

Vulnerability details