Lucene search
K

5 matches found

vulnersOsv
vulnersOsv
added 2022/05/24 5:38 p.m.5 views

cylc-uiserver (>=0.1.0 <=0.2.0), jhub-shibboleth-auth (>=1.0.0 <=1.5.0) +4 more potentially affected by CVE-2020-36191 via jupyterhub (>=0.8.1 <=1.1.0)

jupyterhub PYPI version =0.8.1, =0.1.0, =1.0.0, =0.2.0, =0.1.0, =0.0.1, =0.0.2, =0.0.9 Source cves: CVE-2020-36191 Source advisory: OSV:GHSA-7XX3-QP5W-FW96...

4.5CVSS6.4AI score0.00499EPSS
Exploits1
OSV
OSV
added 2021/01/13 4:15 a.m.3 views

DEBIAN-CVE-2020-36191

JupyterHub 1.1.0 allows CSRF in the admin panel via a request that lacks an xsrf field, as demonstrated by a /hub/api/user request to add or remove a user account...

4.5CVSS5.9AI score0.00499EPSS
Exploits1References1
OSV
OSV
added 2021/01/13 4:15 a.m.4 views

UBUNTU-CVE-2020-36191

JupyterHub 1.1.0 allows CSRF in the admin panel via a request that lacks an xsrf field, as demonstrated by a /hub/api/user request to add or remove a user account...

4.5CVSS7.2AI score0.00499EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2021/01/13 4:15 a.m.4 views

cylc-uiserver (>=0.1.0 <=0.2.0), jhub-shibboleth-auth (>=1.0.0 <=1.5.0) +4 more potentially affected by CVE-2020-36191 via jupyterhub (>=0.8.1 <=1.1.0)

jupyterhub PYPI version =0.8.1, =0.1.0, =1.0.0, =0.2.0, =0.1.0, =0.0.1, =0.0.2, =0.0.9 Source cves: CVE-2020-36191 Source advisory: OSV:PYSEC-2021-67...

4.5CVSS6.4AI score0.00499EPSS
Exploits1
CVE
CVE
added 2021/01/13 3:36 a.m.87 views

CVE-2020-36191

CVE-2020-36191 affects JupyterHub 1.1.0 where CSRF is possible in the admin panel via a request that omits the _xsrf field, demonstrated by a /hub/api/user request for adding or removing a user account. The issue is a CSRF vulnerability in the admin interface that can be exploited by authenticate...

4.5CVSS4.5AI score0.00499EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder