Lucene search
+L

CVE-2026-39377

🗓️ 21 Apr 2026 00:14:59Reported by Debian Security Bug TrackerType 
debiancve
 debiancve
🔗 security-tracker.debian.org👁 6 Views

nbconvert 6.5–7.17.0 allows arbitrary file writes via crafted attachment filenames; fixed in 7.17.1.

Related
Packages
ReporterTitlePublishedViews
Family
attackerkb
CVE-2026-39377
21 Apr 202600:14
attackerkb
cgr
CVE-2026-39377 vulnerabilities
1 May 202601:17
cgr
circl
CVE-2026-39377
20 Apr 202616:16
circl
cnnvd
nbconvert 路径遍历漏洞
21 Apr 202600:00
cnnvd
cve
CVE-2026-39377
21 Apr 202600:14
cve
cvelist
CVE-2026-39377 nbconvert has an Arbitrary File Write via Path Traversal in Cell Attachment Filenames
21 Apr 202600:14
cvelist
euvd
EUVD-2026-24023
21 Apr 202617:18
euvd
github
nbconvert has an Arbitrary File Write via Path Traversal in Cell Attachment Filenames
21 Apr 202617:18
github
nvd
CVE-2026-39377
21 Apr 202601:16
nvd
osv
CGA-F6RQ-J3WP-J759
30 Apr 202620:15
osv
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Debian11anynbconvert0nbconvert_0_any.deb
Debian12anynbconvert0nbconvert_0_any.deb
Debian13anynbconvert7.16.6-1+deb13u1nbconvert_7.16.6-1+deb13u1_any.deb
Debian14anynbconvert7.17.1-1nbconvert_7.17.1-1_any.deb
Debian999anynbconvert7.17.1-1nbconvert_7.17.1-1_any.deb

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

21 Apr 2026 00:14Current
5.5Medium risk
Vulners AI Score5.5
CVSS 3.16.5
EPSS0.00266
SSVC
6