14 matches found
Debian: Security Advisory (DSA-5422-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-5422-1 : jupyter-core - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5422 advisory. - Jupyter Core is a package for the core common functionality of Jupyter projects. Jupyter Core prior to version 4.11.2 contains an arbitrary code execution vulnerability ...
Ubuntu 18.04 ESM / 20.04 ESM / 22.04 ESM : Jupyter Core vulnerability (USN-6153-1)
The remote Ubuntu 18.04 ESM / 20.04 ESM / 22.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-6153-1 advisory. It was discovered that Jupyter Core executed untrusted files in the current working directory. An attacker could possibly use this issue t...
Updated jupyter-core packages fix security vulnerability
Arbitrary code execution when loading configuration files CVE-2022-39286...
MGASA-2023-0062 Updated jupyter-core packages fix security vulnerability
Arbitrary code execution when loading configuration files CVE-2022-39286...
Fedora: Security Advisory for python-jupyter-core (FEDORA-2023-d966145959)
The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 36 : python-jupyter-core (2023-d966145959)
The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-d966145959 advisory. Fix for CVE-2022-39286 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...
GLSA-202301-04 : jupyter_core: Arbitrary Code Execution
The remote host is affected by the vulnerability described in GLSA-202301-04 jupytercore: Arbitrary Code Execution - Jupyter Core is a package for the core common functionality of Jupyter projects. Jupyter Core prior to version 4.11.2 contains an arbitrary code execution vulnerability in...
Debian: Security Advisory (DLA-3195-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-3195 : jupyter - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3195 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3195-1 [email protected] https://www.debian.org/lts/security/...
CVE-2022-39286
creationtimestamp| type| source ---|---|--- 2022-10-27 01:14:41+00:00| seen| https://t.me/cibsecurity/52123...
CVE-2022-39286
CVE-2022-39286 affects Jupyter Core prior to 4.11.2, where loading configuration files could cause arbitrary code execution by executing untrusted files in the current working directory. The issue enables one user to run code as another in affected environments. A patch is available in Jupyter Co...
CVE-2022-39286 Execution with Unnecessary Privileges in JupyterApp
Jupyter Core is a package for the core common functionality of Jupyter projects. Jupyter Core prior to version 4.11.2 contains an arbitrary code execution vulnerability in jupytercore that stems from jupytercore executing untrusted files in CWD. This vulnerability allows one user to run code as...
CVE-2022-39286 Execution with Unnecessary Privileges in JupyterApp
Jupyter Core is a package for the core common functionality of Jupyter projects. Jupyter Core prior to version 4.11.2 contains an arbitrary code execution vulnerability in jupytercore that stems from jupytercore executing untrusted files in CWD. This vulnerability allows one user to run code as...