Lucene search
K

9 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.11 views

Mageia: Security Advisory (MGASA-2014-0320)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.04665EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/08/25 12:0 a.m.17 views

openSUSE Security Update : IPython (openSUSE-SU-2014:1060-1)

This IPython update fixes the following security issue : - RCE in IPython Notebook via cross-origin websocket connection CVE-2014-3429, bnc887577 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Updat...

6.8CVSS5.3AI score0.04665EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/08/09 12:0 a.m.13 views

Mandriva Linux Security Advisory : ipython (MDVSA-2014:157)

Updated ipython package fixes security vulnerability : In IPython before 1.2, the origin of websocket requests was not verified within the IPython notebook server. If an attacker has knowledge of an IPython kernel id they can run arbitrary code on a user's machine when the client visits a crafted...

6.8CVSS5.8AI score0.04665EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2014/08/07 11:13 a.m.25 views

CVE-2014-3429

IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

6.8CVSS6AI score0.04665EPSS
Exploits0References2
CVE
CVE
added 2014/08/07 10:0 a.m.86 views

CVE-2014-3429

IPython Notebook 0.12–1.x before 1.2.0 does not validate the origin of websocket requests, enabling remote code execution by a crafted page with kernel ID knowledge. Affected: IPython Notebook server; vulnerability arises from cross-origin websocket hijacking. Impact: arbitrary code execution on ...

6.8CVSS7.4AI score0.04665EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2014/08/07 10:0 a.m.39 views

CVE-2014-3429

IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page...

7.2AI score0.04665EPSS
Exploits0References9
Mageia
Mageia
added 2014/08/06 10:31 a.m.35 views

Updated ipython package fixes security vulnerability

In IPython before 1.2, the origin of websocket requests was not verified within the IPython notebook server. If an attacker has knowledge of an IPython kernel id they can run arbitrary code on a user's machine when the client visits a crafted malicious page CVE-2014-3429...

6.8CVSS6.7AI score0.04665EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2014/07/28 12:0 a.m.17 views

Fedora Update for ipython FEDORA-2014-8394

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.04665EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/07/26 12:0 a.m.17 views

Fedora 20 : ipython-0.13.2-4.fc20 (2014-8394)

Security fix for CVE-2014-3429 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

6.8CVSS5.3AI score0.04665EPSS
Exploits0References3
Rows per page
Query Builder