5 matches found
CVE-2020-26261
jupyterhub-systemdspawner enables JupyterHub to spawn single-user notebook servers using systemd. In jupyterhub-systemdspawner before version 0.15 user API tokens issued to single-user servers are specified in the environment of systemd units. These tokens are incorrectly accessible to all users...
CVE-2020-26261
creationtimestamp| type| source ---|---|--- 2020-12-09 20:32:41+00:00| seen| https://t.me/cibsecurity/17995 2020-12-09 20:35:43+00:00| seen| https://t.me/cibsecurity/18015 2020-12-09 20:44:38+00:00| seen| https://t.me/cibsecurity/18034 2020-12-09 21:02:23+00:00| seen| https://t.me/cibsecurity/180...
CVE-2020-26261
jupyterhub-systemdspawner enables JupyterHub to spawn single-user notebook servers using systemd. In jupyterhub-systemdspawner before version 0.15 user API tokens issued to single-user servers are specified in the environment of systemd units. These tokens are incorrectly accessible to all users...
CVE-2020-26261 user-readable api tokens in systemd units
jupyterhub-systemdspawner enables JupyterHub to spawn single-user notebook servers using systemd. In jupyterhub-systemdspawner before version 0.15 user API tokens issued to single-user servers are specified in the environment of systemd units. These tokens are incorrectly accessible to all users...
CVE-2020-26261
CVE-2020-26261 affects jupyterhub-systemdspawner. Before v0.15, user API tokens issued to single-user notebook servers were exposed in the environment of systemd units, making them accessible to all users. The fix is in jupyterhub-systemdspawner v0.15. The-littlest-jupyterhub is affected by defau...