3 matches found
CVE-2022-21697
Jupyter Server Proxy is a Jupyter notebook server extension to proxy web services. Versions of Jupyter Server Proxy prior to 3.2.1 are vulnerable to Server-Side Request Forgery SSRF. Any user deploying Jupyter Server or Notebook with jupyter-proxy-server extension enabled is affected. A lack of...
CVE-2022-21697 SSRF vulnerability (requires authentication)
Jupyter Server Proxy is a Jupyter notebook server extension to proxy web services. Versions of Jupyter Server Proxy prior to 3.2.1 are vulnerable to Server-Side Request Forgery SSRF. Any user deploying Jupyter Server or Notebook with jupyter-proxy-server extension enabled is affected. A lack of...
CVE-2022-21697
Jupyter Server Proxy (jupyter-proxy-server) is affected by an SSRF vulnerability in versions before 3.2.1. A lack of input validation allows authenticated users with the extension enabled to proxy requests to arbitrary hosts, bypassing the allowed_hosts check. The issue requires authentication, w...