Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2024/03/06 10:54 a.m.16 views

BIT-JUPYTER-NOTEBOOK-2022-24758 Insertion of Sensitive Information into Log File affects Jupyter Notebook

The Jupyter notebook is a web-based notebook environment for interactive computing. Prior to version 6.4.9, unauthorized actors can access sensitive information from server logs. Anytime a 5xx error is triggered, the auth cookie and other header values are recorded in Jupyter server logs by...

7.5CVSS7.5AI score0.00567EPSS
Exploits0References2
NVD
NVDadded 2022/03/31 11:15 p.m.6 views

CVE-2022-24758

The Jupyter notebook is a web-based notebook environment for interactive computing. Prior to version 6.4.9, unauthorized actors can access sensitive information from server logs. Anytime a 5xx error is triggered, the auth cookie and other header values are recorded in Jupyter server logs by...

7.5CVSS0.00567EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2022/03/31 11:15 p.m.43 views

CVE-2022-24758

The Jupyter notebook is a web-based notebook environment for interactive computing. Prior to version 6.4.9, unauthorized actors can access sensitive information from server logs. Anytime a 5xx error is triggered, the auth cookie and other header values are recorded in Jupyter server logs by...

7.5CVSS6.7AI score0.00567EPSS
Exploits0References3
Cvelist
Cvelistadded 2022/03/31 10:35 p.m.13 views

CVE-2022-24758 Insertion of Sensitive Information into Log File affects Jupyter Notebook

The Jupyter notebook is a web-based notebook environment for interactive computing. Prior to version 6.4.9, unauthorized actors can access sensitive information from server logs. Anytime a 5xx error is triggered, the auth cookie and other header values are recorded in Jupyter server logs by...

7.5CVSS7.8AI score0.00567EPSS
Exploits0References1
OSV
OSVadded 2022/03/25 7:20 p.m.17 views

GHSA-P737-P57G-4CPR Insertion of Sensitive Information into Log File in Jupyter notebook

Impact What kind of vulnerability is it? Anytime a 5xx error is triggered, the auth cookie and other header values are recorded in Jupyter Server logs by default. Considering these logs do not require root access, an attacker can monitor these logs, steal sensitive auth/cookie information, and ga...

7.5CVSS7.9AI score0.00374EPSS
Exploits0References5
Github Security Blog
Github Security Blogadded 2022/03/25 7:20 p.m.32 views

Insertion of Sensitive Information into Log File in Jupyter notebook

Impact What kind of vulnerability is it? Anytime a 5xx error is triggered, the auth cookie and other header values are recorded in Jupyter Server logs by default. Considering these logs do not require root access, an attacker can monitor these logs, steal sensitive auth/cookie information, and ga...

7.5CVSS1.9AI score0.00374EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVEadded 2022/03/23 8:20 p.m.47 views

CVE-2022-24757

The Jupyter Server provides the backend i.e. the core services, APIs, and REST endpoints for Jupyter web applications. Prior to version 1.15.4, unauthorized actors can access sensitive information from server logs. Anytime a 5xx error is triggered, the auth cookie and other header values are...

7.5CVSS7.5AI score0.00374EPSS
Exploits0
Rows per page
Query Builder