14 matches found
PYSEC-2026-365 TigerVNC accessible via the network and not just via a UNIX socket as intended
Summary jupyter-remote-desktop-proxy was meant to rely on UNIX sockets readable only by the current user since version 3.0.0, but when used with TigerVNC, the VNC server started by jupyter-remote-desktop-proxy were still accessible via the network. This vulnerability does not affect users having...
EUVD-2025-10836
Malicious code in bioql PyPI...
Unauthorized Network Access
jupyter-remote-desktop-proxy is vulnerable to unauthorized network access. The vulnerability is due to jupyter-remote-desktop-proxy not properly restricting VNC server access to UNIX sockets when using TigerVNC, allowing the server to be accessible over the network...
CVE-2025-32428
Jupyter Remote Desktop Proxy allows you to run a Linux Desktop on a JupyterHub. jupyter-remote-desktop-proxy was meant to rely on UNIX sockets readable only by the current user since version 3.0.0, but when used with TigerVNC, the VNC server started by jupyter-remote-desktop-proxy were still...
CVE-2025-32428
Jupyter Remote Desktop Proxy allows you to run a Linux Desktop on a JupyterHub. jupyter-remote-desktop-proxy was meant to rely on UNIX sockets readable only by the current user since version 3.0.0, but when used with TigerVNC, the VNC server started by jupyter-remote-desktop-proxy were still...
CVE-2025-32428
CVE-2025-32428 : The issue affects the project jupyter-remote-desktop-proxy . When configured to use TigerVNC, the VNC server started by the proxy could be accessed over the network, rather than only via a UNIX socket (as intended since 3.0.0). This exposed remote ports and potentially allowed ne...
CVE-2025-32428 Jupyter Remote Desktop Proxy makes TigerVNC accessible via the network and not just via a UNIX socket as intended
Jupyter Remote Desktop Proxy allows you to run a Linux Desktop on a JupyterHub. jupyter-remote-desktop-proxy was meant to rely on UNIX sockets readable only by the current user since version 3.0.0, but when used with TigerVNC, the VNC server started by jupyter-remote-desktop-proxy were still...
CVE-2025-32428 Jupyter Remote Desktop Proxy makes TigerVNC accessible via the network and not just via a UNIX socket as intended
Jupyter Remote Desktop Proxy allows you to run a Linux Desktop on a JupyterHub. jupyter-remote-desktop-proxy was meant to rely on UNIX sockets readable only by the current user since version 3.0.0, but when used with TigerVNC, the VNC server started by jupyter-remote-desktop-proxy were still...
CVE-2025-32428 Jupyter Remote Desktop Proxy makes TigerVNC accessible via the network and not just via a UNIX socket as intended
Jupyter Remote Desktop Proxy allows you to run a Linux Desktop on a JupyterHub. jupyter-remote-desktop-proxy was meant to rely on UNIX sockets readable only by the current user since version 3.0.0, but when used with TigerVNC, the VNC server started by jupyter-remote-desktop-proxy were still...
Jupyter Remote Desktop Proxy 安全漏洞
Jupyter Remote Desktop Proxy is an open source application from JupyterHub. A security vulnerability exists in Jupyter Remote Desktop Proxy versions prior to 3.0.1, which stems from the fact that the VNC server remains accessible over the network when used with TigerVNC...
Exposure of Resource to Wrong Sphere
Overview jupyter-remote-desktop-proxy is a Run a desktop environments on Jupyter Affected versions of this package are vulnerable to Exposure of Resource to Wrong Sphere in the setupwebsockify function, due to the improper configuration of the TigerVNC server, when it as opposed to TurboVNC is th...
GHSA-VRQ4-9HC3-CGP7 TigerVNC accessible via the network and not just via a UNIX socket as intended
Summary jupyter-remote-desktop-proxy was meant to rely on UNIX sockets readable only by the current user since version 3.0.0, but when used with TigerVNC, the VNC server started by jupyter-remote-desktop-proxy were still accessible via the network. This vulnerability does not affect users having...
TigerVNC accessible via the network and not just via a UNIX socket as intended
Summary jupyter-remote-desktop-proxy was meant to rely on UNIX sockets readable only by the current user since version 3.0.0, but when used with TigerVNC, the VNC server started by jupyter-remote-desktop-proxy were still accessible via the network. This vulnerability does not affect users having...
PT-2025-16172
Name of the Vulnerable Software and Affected Versions jupyter-remote-desktop-proxy versions 3.0.0 through 3.0.0 Description The issue allows unauthorized network access to TigerVNC, risking system compromise, when jupyter-remote-desktop-proxy is used with TigerVNC. This vulnerability does not...