Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2023/10/20 12:0 a.m.33 views

Ubuntu 16.04 ESM : IPython vulnerability (USN-4855-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4855-1 advisory. It was discovered that IPython did not properly sanitize certain input. If a user were tricked into opening a specially crafted notebook file, a remote attacker...

7.8CVSS7.6AI score0.011EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.16 views

Mageia: Security Advisory (MGASA-2018-0182)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.3AI score0.011EPSS
Exploits0References4
Debian
Debian
added 2020/11/19 4:53 a.m.70 views

[SECURITY] [DLA 2432-1] jupyter-notebook security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2432-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA November 19, 2020 https://wiki.debian.org/LTS -...

7.8CVSS7.3AI score0.01511EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/11/19 12:0 a.m.29 views

Debian DLA-2432-1 : jupyter-notebook security update

Several vulnerabilities have been discovered in jupyter-notebook. CVE-2018-8768 A maliciously forged notebook file can bypass sanitization to execute JavaScript in the notebook context. Specifically, invalid HTML is 'fixed' by jQuery after sanitization, making it dangerous. CVE-2018-19351 allows...

7.8CVSS6.4AI score0.01511EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.34 views

Fedora 28 : python-notebook (2018-1fdcb294e3)

Security fix for CVE-2018-8768 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

7.8CVSS7.2AI score0.011EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/03/30 12:0 a.m.45 views

Fedora 27 : python-notebook (2018-b621d86462)

Security fix for CVE-2018-8768 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

7.8CVSS7.2AI score0.011EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/03/30 12:0 a.m.27 views

Fedora Update for python-notebook FEDORA-2018-b621d86462

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.3AI score0.011EPSS
Exploits0References2
Mageia
Mageia
added 2018/03/26 8:21 p.m.33 views

Updated jupyter-notebook packages fix security vulnerability

CVE-2018-8768: In Jupyter Notebook before 5.4.1, a maliciously forged notebook file can bypass sanitization to execute JavaScript in the notebook context. Specifically, invalid HTML is 'fixed' by jQuery after sanitization, making it dangerous...

7.8CVSS1.2AI score0.011EPSS
Exploits0References2
OSV
OSV
added 2018/03/26 8:21 p.m.9 views

MGASA-2018-0182 Updated jupyter-notebook packages fix security vulnerability

CVE-2018-8768: In Jupyter Notebook before 5.4.1, a maliciously forged notebook file can bypass sanitization to execute JavaScript in the notebook context. Specifically, invalid HTML is 'fixed' by jQuery after sanitization, making it dangerous...

7.8CVSS7.6AI score0.011EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/03/20 12:0 a.m.44 views

FreeBSD : Jupyter Notebook -- vulnerability (b3edc7d9-9af5-4daf-88f1-61f68f4308c2)

MITRE reports : In Jupyter Notebook before 5.4.1, a maliciously forged notebook file can bypass sanitization to execute JavaScript in the notebook context. Specifically, invalid HTML is 'fixed' by jQuery after sanitization, making it dangerous. C Tenable Network Security, Inc. The descriptive tex...

7.8CVSS7.4AI score0.011EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2018/03/18 6:29 a.m.5 views

hugo-jupyter (>=0.2.1 <=0.3.0), ipynb-path (>=0.1.2 <=0.1.3) +2 more potentially affected by CVE-2018-8768 via notebook (>=4.2.3 <=5.0.0)

notebook PYPI version =4.2.3, =0.2.1, =0.1.2, =0.5.0, =0.1.0, =0.2.0.dev1 Source cves: CVE-2018-8768 Source advisory: OSV:PYSEC-2018-57...

7.8CVSS7AI score0.011EPSS
Exploits0
NVD
NVD
added 2018/03/18 6:29 a.m.15 views

CVE-2018-8768

In Jupyter Notebook before 5.4.1, a maliciously forged notebook file can bypass sanitization to execute JavaScript in the notebook context. Specifically, invalid HTML is 'fixed' by jQuery after sanitization, making it dangerous...

7.8CVSS7.6AI score0.011EPSS
Exploits0References2
OSV
OSV
added 2018/03/18 6:29 a.m.24 views

CVE-2018-8768

In Jupyter Notebook before 5.4.1, a maliciously forged notebook file can bypass sanitization to execute JavaScript in the notebook context. Specifically, invalid HTML is 'fixed' by jQuery after sanitization, making it dangerous...

7.8CVSS7.1AI score
Exploits0References2
Cvelist
Cvelist
added 2018/03/18 6:0 a.m.25 views

CVE-2018-8768

In Jupyter Notebook before 5.4.1, a maliciously forged notebook file can bypass sanitization to execute JavaScript in the notebook context. Specifically, invalid HTML is 'fixed' by jQuery after sanitization, making it dangerous...

6.2AI score0.011EPSS
Exploits0References2
CVE
CVE
added 2018/03/18 6:0 a.m.112 views

CVE-2018-8768

CVE-2018-8768 affects Jupyter Notebook up to version 5.4.1. A maliciously forged notebook can bypass sanitization, allowing JavaScript execution in the notebook context due to how invalid HTML is fixed by jQuery after sanitization (XSS risk). The issue is documented in multiple advisories (Debian...

7.8CVSS6AI score0.011EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2018/03/18 6:0 a.m.22 views

CVE-2018-8768

In Jupyter Notebook before 5.4.1, a maliciously forged notebook file can bypass sanitization to execute JavaScript in the notebook context. Specifically, invalid HTML is 'fixed' by jQuery after sanitization, making it dangerous...

7.8CVSS7.6AI score0.011EPSS
Exploits0
Rows per page
Query Builder