Astra Linux – Vulnerability in ipython

IPython Interactive Python is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming language. Affected versions are subject to a vulnerability that allows arbitrary code to be executed, due to improper management of cross-user...

EUVD-2017-0063

Malware in sbrugna...

EUVD-2017-0064

Malware in sbrugna...

EUVD-2017-0062

Malware in sbrugna...

EUVD-2014-0022

Malware in sbrugna...

EUVD-2015-0024

Malware in sbrugna...

EUVD-2017-1266

Malware in sbrugna...

EUVD-2015-0023

Malware in sbrugna...

EUVD-2023-0099

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-24816

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - IPython Interactive Python is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming...

Linux Distros Unpatched Vulnerability : CVE-2022-21699

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - IPython Interactive Python is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming...

TencentOS Server 4: ipython (TSSA-2025:0088)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0088 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

CVE-2023-24816

IPython Interactive Python is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming language. Versions prior to 8.1.0 are subject to a command injection vulnerability with very specific prerequisites. This vulnerability requir...

ROS-20241211-14

A vulnerability in the shell command of the IPython interactive computing shell command is related to access control errors. access delimitation errors. Exploitation of the vulnerability allows an attacker to gain access to sensitive data, compromise its integrity, and cause a denial of service...

conda-store (>=2024.6.1 <=2024.11.2), cylc-uiserver (>=0.1.0 <=0.3.0) +13 more potentially affected by CVE-2024-41942 via jupyterhub (>=0.8.1 <=4.0.2)

jupyterhub PYPI version =0.8.1, =2024.6.1, =0.1.0, =0.0.4, =1.3.7, =1.0.0, =0.2.0, =0.1.0, =0.0.0, =0.1.0, =0.10.0, =0.2.25, =0.0.1, =0.1.0, =0.0.2, =0.0.9 Source cves: CVE-2024-41942 Source advisory: OSV:PYSEC-2024-200...

conda-store (>=2024.6.1 <=2024.11.2), cylc-uiserver (>=0.1.0 <=0.3.0) +13 more potentially affected by CVE-2024-41942 via jupyterhub (>=0.8.1 <=4.0.2)

jupyterhub PYPI version =0.8.1, =2024.6.1, =0.1.0, =0.0.4, =1.3.7, =1.0.0, =0.2.0, =0.1.0, =0.0.0, =0.1.0, =0.10.0, =0.2.25, =0.0.1, =0.1.0, =0.0.2, =0.0.9 Source cves: CVE-2024-41942 Source advisory: OSV:GHSA-9X4Q-3GXW-849F...

fabricauthenticator (>=0.0.2.5 <=1.3.4rc0), jupyterhub-ltiauthenticator (=1.3.0) +7 more potentially affected by CVE-2024-37300 via oauthenticator (>=14.0.0 <=16.2.1)

oauthenticator PYPI version =14.0.0, =0.0.2.5, =3.0.0, =1.0.2, =0.1.0, =1.1.9, =0.5.0, =0.2.25, =0.3.2 Source cves: CVE-2024-37300 Source advisory: OSV:GHSA-GPRJ-3P75-F996...

Arbitrary Code Execution

ipython is vulnerable to Arbitrary Code Execution. The vulnerability is due to improper origin validation of websocket requests, allowing remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

The vulnerability of the set_term_title() function (ipython/IPython/utils/terminal.py) in the command interface for interactive computations in IPython, allowing a hacker to execute arbitrary commands.

The vulnerability of the settermtitle function in the IPython/ipython/utils/terminal.py command interface exists due to the lack of measures to neutralize special elements used in the operating system’s command line. Exploiting this vulnerability could allow a malicious individual to execute...

Ubuntu 16.04 ESM : IPython vulnerability (USN-4855-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4855-1 advisory. It was discovered that IPython did not properly sanitize certain input. If a user were tricked into opening a specially crafted notebook file, a remote attacker...