4 matches found
Jupyter Server vulnerable to open redirect
Overview Jupyter Server provided by Jupyter Development Team contains the vulnerability listed below. Open redirect CWE-601 - CVE-2025-61669 Noriaki Iwasaki of Cyber Defense Institute, Inc. reported this vulnerability to IPA and the developer. JPCERT/CC coordinated with the developer to publish t...
SUSE CVE-2025-61669
Jupyter Server is the backend for Jupyter web applications. In jupyterserver versions through 2.17.0, the next query parameter in the login flow is insufficiently validated in LoginFormHandler.redirectsafe, which allows redirects to arbitrary external domains via values such as ///example.com. An...
a-mailx (=0.1.0), a2 (>=0.1.0 <=0.3.17) +362 more potentially affected by CVE-2025-61669 via jupyter-server (>=0.0.5 <=2.17.0)
jupyter-server PYPI version =0.0.5, =0.1.0, =0.14.0.3, =0.3.0, =0.1.0b0, =1.3.4, =0.18.3, =0.1.0, =1.0.1, =0.1.0, =0.14.0 and more Source cves: CVE-2025-61669 Source advisory: OSV:GHSA-QH7Q-6QM3-653W...
a-mailx (=0.1.0), a2 (>=0.1.0 <=0.3.17) +362 more potentially affected by CVE-2025-61669 via jupyter-server (>=0.0.5 <=2.17.0)
jupyter-server PYPI version =0.0.5, =0.1.0, =0.14.0.3, =0.3.0, =0.1.0b0, =1.3.4, =0.18.3, =0.1.0, =1.0.1, =0.1.0, =0.14.0 and more Source cves: CVE-2025-61669 Source advisory: OSV:PYSEC-2026-67...