14 matches found
EUVD-2023-40002
Malicious code in bioql PyPI...
Malicious code in foundry-jupyter-extension (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 8114162af3676e6c75f96e1dc953dae363e41fab4e9b3ce75a84b261aece0113 Installing or importing the module triggers exfiltration of environmental variables --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
MAL-2025-6248 Malicious code in foundry-jupyter-extension (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 8114162af3676e6c75f96e1dc953dae363e41fab4e9b3ce75a84b261aece0113 Installing or importing the module triggers exfiltration of environmental variables --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
Solara Security Breach
Solara is a pure Python, React style framework open sourced by widgetti. It is used to extend Jupyter and web applications. A security vulnerability exists in Solara versions prior to 1.35.1, which stems from a failure to properly validate a URI fragment for a directory traversal sequence, which...
The vulnerability of the Jupyter extension in Microsoft Visual Studio’s software development environment allows attackers to perform spear-phishing attacks.
The vulnerability of the Jupyter extension in Microsoft Visual Studio relates to errors in information presentation on the user interface. Exploiting this vulnerability can allow attackers to perform spear-phishing attacks...
CVE-2023-36018
Visual Studio Code Jupyter Extension Spoofing Vulnerability...
CVE-2023-36018
Visual Studio Code Jupyter Extension Spoofing Vulnerability...
Spoofing
Visual Studio Code Jupyter Extension Spoofing Vulnerability...
CVE-2023-36018 Visual Studio Code Jupyter Extension Spoofing Vulnerability
...
CVE-2023-36018
CVE-2023-36018 targets the Visual Studio Code Jupyter Extension and is described as a spoofing vulnerability that can allow an attacker to impersonate the user interface. The connected sources frame this as a UI spoofing issue (Visual Studio Code Jupyter Extension) with high impact, aligning with...
CVE-2023-36018 Visual Studio Code Jupyter Extension Spoofing Vulnerability
...
Visual Studio Code Jupyter Extension Spoofing Vulnerability
...
PT-2023-7271 · Microsoft · Visual Studio Code Jupyter Extension
Name of the Vulnerable Software and Affected Versions: Visual Studio Code Jupyter Extension affected versions not specified Description: The issue is related to errors in the representation of information by the user interface. It may allow an attacker to conduct spoofing attacks. Recommendations...
PYSEC-2021-315
nbgitpuller is a Jupyter server extension to sync a git repository one-way to a local path. Due to unsanitized input, visiting maliciously crafted links could result in arbitrary code execution in the user environment. This has been resolved in version 0.10.2 and all users are advised to upgrade...