CVE-2018-7206

🗓️ 18 Feb 2018 03:00:29Reported by mitreType

Issue in JupyterHub OAuthenticator versions before 0.6.2 and 0.7.3 allows unauthorized account creation with GitLab group whitelisting

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
Veracode	Unauthorized Account Creation	20 Feb 201805:01	–	veracode
OSV	PYSEC-2018-68	18 Feb 201803:29	–	osv
OSV	CVE-2018-7206	18 Feb 201803:29	–	osv
OSV	GHSA-8X3M-M3X9-54FJ JupyterHub OAuthenticator elevation of privilege	13 May 202201:12	–	osv
Github Security Blog	JupyterHub OAuthenticator elevation of privilege	13 May 202201:12	–	github
Cvelist	CVE-2018-7206	18 Feb 201803:00	–	cvelist
Prion	Design/Logic Flaw	18 Feb 201803:29	–	prion
NVD	CVE-2018-7206	18 Feb 201803:29	–	nvd

Nvd

Node

jupyter oauthenticatorMatch0.6.0

jupyter oauthenticatorMatch0.6.1

jupyter oauthenticatorMatch0.7.0

jupyter oauthenticatorMatch0.7.1

jupyter oauthenticatorMatch0.7.2

Source	Link
blog	www.blog.jupyter.org/security-fix-for-jupyterhub-gitlab-oauthenticator-7b14571d1f76
github	www.github.com/jupyterhub/oauthenticator/blob/8499dc2/CHANGELOG.md
github	www.github.com/jupyterhub/oauthenticator/commit/1845c0e4b1bff3462c91c3108c85205acd3c75a2

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

18 Feb 2018 03:29Current

8.6High risk

Vulners AI Score8.6

CVSS26.5

CVSS38.8

EPSS0.00686