![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgpUPL3bJVXGXDV95w9TolzZanwjHnVNpci6OLuYyeRzTdceW3EnPE4Fi0HQKzBju003fBtiMuIRaQU0o79WNiZjiAzyRUa6EqEfePuuY0H3LO6sQOWkZK8jbjHdWoCWM-bMPKeFO4eI0EhrRMk4cs0WVIdnPHUN8u4BBIkP3e94fV2iSRCri42Sg0D99zj/s1600/poc.jpg)
Users of Metabase, a popular business intelligence and data visualization software package, are being advised to update to the latest version following the discovery of an “extremely severe” flaw that could result in pre-authenticated remote code execution on affected installations.
Tracked as CVE-2023-38646, the issue impacts open-source editions prior to 0.46.6.1 and Metabase Enterprise
Source:: The Hackers News