Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Veracode
Veracodeadded 2026/02/26 5:55 a.m.5 views

Unauthorized Code Execution

nbconvert is vulnerable to unauthorized code execution. The vulnerability is due to improper handling of SVG-to-PDF conversion on Windows where a malicious inkscape.bat file in the working directory can be executed, which allows an attacker to run arbitrary code when a user performs the conversio...

8.5CVSS6.2AI score0.00014EPSS
Exploits1References8Affected Software1
EUVD
EUVDadded 2025/12/18 10:3 p.m.2 views

EUVD-2025-203957

nbconvert has an uncontrolled search path that leads to unauthorized code execution on Windows...

8.5CVSS6.9AI score0.00014EPSS
Exploits1References4
UbuntuCve
UbuntuCveadded 2025/12/17 9:16 p.m.1 views

CVE-2025-53000

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions of nbconvert up to and including 7.16.6 on Windows have a vulnerability in which converting a notebook containing SVG output to a PDF results in unauthorized code execution...

8.5CVSS5.9AI score0.00014EPSS
Exploits1References2
CVE
CVEadded 2025/12/17 8:27 p.m.49 views

CVE-2025-53000

The CVE-2025-53000 issue affects nbconvert (jupyter nbconvert) on Windows prior to 7.17.0, where exporting a notebook with SVG output to PDF could execute arbitrary code. The root cause is an unsafe search for the Inkscape executable: nbconvert’s svg2pdf.py uses shutil.which("inkscape"), which ma...

8.5CVSS5.9AI score0.00014EPSS
Exploits1References6Affected Software1
ATTACKERKB
ATTACKERKBadded 2025/12/17 8:27 p.m.2 views

CVE-2025-53000

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions of nbconvert up to and including 7.16.6 on Windows have a vulnerability in which converting a notebook containing SVG output to a PDF results in unauthorized code execution...

8.5CVSS6AI score0.00014EPSS
Exploits1References6
Cvelist
Cvelistadded 2025/12/17 8:27 p.m.22 views

CVE-2025-53000 nbconvert has an uncontrolled search path that leads to unauthorized code execution on Windows

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions of nbconvert up to and including 7.16.6 on Windows have a vulnerability in which converting a notebook containing SVG output to a PDF results in unauthorized code execution...

8.5CVSS0.00014EPSS
Exploits1References6
OSV
OSVadded 2025/12/17 8:27 p.m.2 views

CVE-2025-53000 nbconvert has an uncontrolled search path that leads to unauthorized code execution on Windows

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions of nbconvert up to and including 7.16.6 on Windows have a vulnerability in which converting a notebook containing SVG output to a PDF results in unauthorized code execution...

8.5CVSS5.9AI score0.00014EPSS
Exploits1References8
Rows per page
Query Builder