We've patched a severe vulnerability uncovered by a third-party security researcher.

Metabase is an open-source business intelligence (BI) tool for data visualization and analytics. Readers can find documentation, tutorials, and community forums to learn about using Metabase for data exploration, dashboard creation, and generating insights from data. Additionally, they can learn about connecting Metabase to various data sources, building custom dashboards, and sharing reports with stakeholders.

Metabase

Metabase has patched a severe security vulnerability discovered by an independent researcher. The flaw allows authenticated users (including embedding users) to retrieve sensitive information such as database credentials from a Metabase instance. Metabase Cloud users are already protected, but all self-hosted instances must upgrade immediately to the minimum safe release for their version (v0.55.20+, v0.56.20+, v0.57.13+, or v0.58.7+). Custom fork users should contact Metabase directly for patches.

Security update available for Metabase - Please upgrade now

Minimum safe releases for each Metabase version