Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-40002

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01509EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/26 1:36 a.m.5 views

Malicious code in foundry-jupyter-extension (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 8114162af3676e6c75f96e1dc953dae363e41fab4e9b3ce75a84b261aece0113 Installing or importing the module triggers exfiltration of environmental variables --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

7.5AI score
Exploits0References1
OSV
OSV
added 2025/07/26 1:36 a.m.2 views

MAL-2025-6248 Malicious code in foundry-jupyter-extension (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 8114162af3676e6c75f96e1dc953dae363e41fab4e9b3ce75a84b261aece0113 Installing or importing the module triggers exfiltration of environmental variables --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

7.3AI score
Exploits0References1
CNNVD
CNNVD
added 2024/07/12 12:0 a.m.24 views

Solara Security Breach

Solara is a pure Python, React style framework open sourced by widgetti. It is used to extend Jupyter and web applications. A security vulnerability exists in Solara versions prior to 1.35.1, which stems from a failure to properly validate a URI fragment for a directory traversal sequence, which...

8.6CVSS6.5AI score0.02884EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/12/01 12:0 a.m.7 views

The vulnerability of the Jupyter extension in Microsoft Visual Studio’s software development environment allows attackers to perform spear-phishing attacks.

The vulnerability of the Jupyter extension in Microsoft Visual Studio relates to errors in information presentation on the user interface. Exploiting this vulnerability can allow attackers to perform spear-phishing attacks...

7.8CVSS7.7AI score0.01509EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/11/14 6:15 p.m.31 views

CVE-2023-36018

Visual Studio Code Jupyter Extension Spoofing Vulnerability...

9.8CVSS7AI score0.01509EPSS
Exploits0References1
NVD
NVD
added 2023/11/14 6:15 p.m.33 views

CVE-2023-36018

Visual Studio Code Jupyter Extension Spoofing Vulnerability...

9.8CVSS0.01509EPSS
Exploits0References1
Prion
Prion
added 2023/11/14 6:15 p.m.15 views

Spoofing

Visual Studio Code Jupyter Extension Spoofing Vulnerability...

7.5CVSS7.2AI score0.01509EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/14 5:57 p.m.19 views

CVE-2023-36018 Visual Studio Code Jupyter Extension Spoofing Vulnerability

...

7.8CVSS6.8AI score0.01509EPSS
Exploits0References1
CVE
CVE
added 2023/11/14 5:57 p.m.165 views

CVE-2023-36018

CVE-2023-36018 targets the Visual Studio Code Jupyter Extension and is described as a spoofing vulnerability that can allow an attacker to impersonate the user interface. The connected sources frame this as a UI spoofing issue (Visual Studio Code Jupyter Extension) with high impact, aligning with...

9.8CVSS8.7AI score0.01509EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/14 5:57 p.m.40 views

CVE-2023-36018 Visual Studio Code Jupyter Extension Spoofing Vulnerability

...

7.8CVSS9.7AI score0.01509EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2023/11/14 8:0 a.m.31 views

Visual Studio Code Jupyter Extension Spoofing Vulnerability

...

9.8CVSS7.3AI score0.01509EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/11/14 12:0 a.m.6 views

PT-2023-7271 · Microsoft · Visual Studio Code Jupyter Extension

Name of the Vulnerable Software and Affected Versions: Visual Studio Code Jupyter Extension affected versions not specified Description: The issue is related to errors in the representation of information by the user interface. It may allow an attacker to conduct spoofing attacks. Recommendations...

9.8CVSS9.4AI score0.01509EPSS
Exploits0References7
PyPA
PyPA
added 2021/08/25 6:15 p.m.6 views

PYSEC-2021-315

nbgitpuller is a Jupyter server extension to sync a git repository one-way to a local path. Due to unsanitized input, visiting maliciously crafted links could result in arbitrary code execution in the user environment. This has been resolved in version 0.10.2 and all users are advised to upgrade...

9.6CVSS7.5AI score0.0173EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder