Lucene search
FreeBSDB3EDC7D9-9AF5-4DAF-88F1-61F68F4308C2HistoryMar 18, 2018 - 12:00 a.m.
Jupyter Notebook -- vulnerability
2018-03-1800:00:00
vuxml.freebsd.org
12
0.001 Low
EPSS
Percentile
30.1%
MITRE reports:
In Jupyter Notebook before 5.4.1, a maliciously forged notebook file
can bypass sanitization to execute JavaScript in the notebook context.
Specifically, invalid HTML is ‘fixed’ by jQuery after sanitization,
making it dangerous.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | py27-notebook | < 5.4.1 | UNKNOWN |
| FreeBSD | any | noarch | py34-notebook | < 5.4.1 | UNKNOWN |
| FreeBSD | any | noarch | py35-notebook | < 5.4.1 | UNKNOWN |
| FreeBSD | any | noarch | py36-notebook | < 5.4.1 | UNKNOWN |
Related
nessus
nessus
Fedora 28 : python-notebook (2018-1fdcb294e3)
2019-01-03 00:00:00
FreeBSD : Jupyter Notebook -- vulnerability (b3edc7d9-9af5-4daf-88f1-61f68f4308c2)
2018-03-20 00:00:00
Ubuntu 16.04 ESM : IPython vulnerability (USN-4855-1)
2023-10-20 00:00:00
osv
osv
CVE-2018-8768
2018-03-18 06:29:00
Jupyter Notebook file bypasses sanitization, executes JavaScript
2018-07-12 12:00:00
PYSEC-2018-57
2018-03-18 06:29:00
fedora
fedora
[SECURITY] Fedora 27 Update: python-notebook-5.2.1-2.fc27
2018-03-29 16:21:48
[SECURITY] Fedora 28 Update: python-notebook-5.4.0-2.fc28
2018-03-30 13:38:11
[SECURITY] Fedora 26 Update: python-notebook-5.0.0-2.fc26
2018-03-29 15:54:07
mageia
mageia
Updated jupyter-notebook packages fix security vulnerability
2018-03-26 23:21:11
cve
cve
CVE-2018-8768
2018-03-18 06:29:00
openvas
openvas
Fedora Update for python-notebook FEDORA-2018-ddb95c8324
2018-03-30 00:00:00
Ubuntu: Security Advisory (USN-4855-1)
2023-01-27 00:00:00
Fedora Update for python-notebook FEDORA-2018-b621d86462
2018-03-30 00:00:00
debiancve
debiancve
CVE-2018-8768
2018-03-18 06:29:00
ubuntucve
ubuntucve
CVE-2018-8768
2018-03-18 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2018-03-16 04:33:36
prion
prion
Design/Logic Flaw
2018-03-18 06:29:00
cvelist
cvelist
CVE-2018-8768
2018-03-18 06:00:00
ubuntu
ubuntu
IPython vulnerability
2021-03-15 00:00:00
github
github
Jupyter Notebook file bypasses sanitization, executes JavaScript
2018-07-12 12:00:00
debian
debian
[SECURITY] [DLA 2432-1] jupyter-notebook security update
2020-11-19 04:54:03