Lucene search

K

GoogleOSV:GHSA-92MR-V722-F48M

HistoryMay 17, 2022 - 3:25 a.m.

Improper Input Validation in Jupyter Notebook

2022-05-1703:25:49

Google

osv.dev

8

0.015 Low

EPSS

Percentile

87.1%

The editor in IPython Notebook before 3.2.2 and Jupyter Notebook 4.0.x before 4.0.5 allows remote attackers to execute arbitrary JavaScript code via a crafted file, which triggers a redirect to files/, related to MIME types.

CPENameOperatorVersion
ipythoneq0.10.2
ipythoneq2.3.1
ipythoneq0.9.1
ipythoneq0.12.1
ipythoneq3.0.0
ipythoneq1.2.0
ipythoneq2.3.0
ipythoneq1.1.0
ipythoneq3.2.0
ipythoneq0.6.15

Rows per page:

1-10 of 531

References

lists.fedoraproject.org/pipermail/package-announce/2015-September/167670.html

seclists.org/oss-sec/2015/q3/558

seclists.org/oss-sec/2015/q3/634

bugzilla.redhat.com/show_bug.cgi?id=1264067

github.com/advisories/GHSA-92mr-v722-f48m

github.com/ipython/ipython/commit/0a8096adf165e2465550bd5893d7e352544e5967

github.com/jupyter/notebook/commit/9e63dd89b603dfbe3a7e774d8a962ee0fa30c0b5

github.com/pypa/advisory-database/tree/main/vulns/ipython/PYSEC-2015-25.yaml

nvd.nist.gov/vuln/detail/CVE-2015-7337

security.gentoo.org/glsa/201512-02

0.015 Low

EPSS

Percentile

87.1%

Related for OSV:GHSA-92MR-V722-F48M

cvelist1 nvd1 debiancve1 nessus3 ubuntucve1 osv2 github1 cve1 gentoo1 openvas1 prion1 freebsd1 fedora1