Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2015-6938
HistorySep 21, 2015 - 7:59 p.m.

CVE-2015-6938

2015-09-2119:59:05
Debian Security Bug Tracker
security-tracker.debian.org
12

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.002

Percentile

57.6%

JSON

Cross-site scripting (XSS) vulnerability in the file browser in notebook/notebookapp.py in IPython Notebook before 3.2.2 and Jupyter Notebook 4.0.x before 4.0.5 allows remote attackers to inject arbitrary web script or HTML via a folder name. NOTE: this was originally reported as a cross-site request forgery (CSRF) vulnerability, but this may be inaccurate.

Related

mageia 1
openvas 3
nessus 5
nvd 1
ubuntucve 1
cvelist 1
prion 1
osv 3
github 1
cve 1
fedora 3
freebsd 1
mageia
mageia
Updated ipython packages fix CVE-2015-6938
2015-09-15 17:55:06
openvas
openvas
Fedora Update for ipython FEDORA-2015-14902
2015-09-18 00:00:00
Mageia: Security Advisory (MGASA-2015-0372)
2015-10-15 00:00:00
Fedora Update for ipython FEDORA-2015-14901
2015-09-18 00:00:00
nessus
nessus
openSUSE Security Update : IPython / python3-IPython (openSUSE-2015-638)
2015-10-09 00:00:00
Fedora 21 : ipython-2.4.1-8.fc21 (2015-14901)
2015-09-18 00:00:00
Fedora 22 : ipython-2.4.1-8.fc22 (2015-14902)
2015-09-18 00:00:00
nvd
nvd
CVE-2015-6938
2015-09-21 19:59:05
ubuntucve
ubuntucve
CVE-2015-6938
2015-09-21 00:00:00
cvelist
cvelist
CVE-2015-6938
2015-09-21 19:00:00
prion
prion
Cross site request forgery (csrf)
2015-09-21 19:59:00
osv
osv
PYSEC-2015-24
2015-09-21 19:59:00
Improper Neutralization of Input During Web Page Generation in Jupyter Notebook
2022-05-14 02:04:49
PYSEC-2015-26
2015-09-21 19:59:00
github
github
Improper Neutralization of Input During Web Page Generation in Jupyter Notebook
2022-05-14 02:04:49
cve
cve
CVE-2015-6938
2015-09-21 19:59:05
fedora
fedora
[SECURITY] Fedora 22 Update: ipython-2.4.1-8.fc22
2015-09-18 01:34:41
[SECURITY] Fedora 21 Update: ipython-2.4.1-8.fc21
2015-09-18 03:52:51
[SECURITY] Fedora 23 Update: ipython-3.2.1-3.fc23
2015-09-25 08:54:17
freebsd
freebsd
devel/ipython -- multiple vulnerabilities
2015-09-01 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.002

Percentile

57.6%

JSON
Related for DEBIANCVE:CVE-2015-6938
mageia1openvas3nessus5nvd1ubuntucve1cvelist1prion1osv3github1cve1fedora3freebsd1