Lucene search
+L

CVE-2026-44182 Jupyter Enterprise Gateway Has Kubernetes Manifest Injection via Jinja2 Template Rendering

🗓️ 16 Jul 2026 22:05:09Reported by GitHub_MType 
cvelist
 cvelist
🔗 www.cve.org👁 8 Views

Jupyter Enterprise Gateway before 3.3.0 interpolates untrusted env vars into Kubernetes manifests, enabling injection.

Related
Affected
Refs
ReporterTitlePublishedViews
Family
attackerkb
CVE-2026-44182
16 Jul 202622:05
attackerkb
circl
CVE-2026-44182
3 Jun 202602:54
circl
cve
CVE-2026-44182
16 Jul 202622:05
cve
euvd
EUVD-2026-45065
16 Jul 202622:05
euvd
github
Jupyter Enterprise Gateway: Kubernetes Manifest Injection in Jinja2 Template Rendering
3 Jun 202621:37
github
nvd
CVE-2026-44182
16 Jul 202623:16
nvd
osv
GHSA-CFW7-6C5V-2WJQ Jupyter Enterprise Gateway: Kubernetes Manifest Injection in Jinja2 Template Rendering
3 Jun 202621:37
osv
osv
PYSEC-2026-362 Jupyter Enterprise Gateway: Kubernetes Manifest Injection in Jinja2 Template Rendering
29 Jun 202611:50
osv
ptsecurity
PT-2026-46126
3 Jun 202600:00
ptsecurity
ptsecurity
PT-2026-53450
29 Jun 202600:00
ptsecurity
Rows per page
[
  {
    "vendor": "jupyter-server",
    "product": "enterprise_gateway",
    "versions": [
      {
        "version": "< 3.3.0",
        "status": "affected"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation