Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-1797

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00331EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-28188

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jupyter Scheduler is collection of extensions for programming jobs to run now or run on a schedule. The list of conda environments of jupyter-scheduler users...

5.3CVSS6.2AI score0.00331EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:4 a.m.4 views

CVE-2024-28188

Jupyter Scheduler is collection of extensions for programming jobs to run now or run on a schedule. The list of conda environments of jupyter-scheduler users maybe be exposed, potentially revealing information about projects that a specific user may be working on. This vulnerability has been...

5.3CVSS6.6AI score0.00331EPSS
Exploits0References1
Veracode
Veracode
added 2024/05/28 5:59 a.m.17 views

Missing Authentication

jupyter-scheduler is vulnerable to Missing Authentication. The vulnerability is due to a missing authentication check on the /scheduler/runtimeenvironments API endpoint, allowing unauthenticated users to obtain the list of Conda environment names on the server...

5.3CVSS6.9AI score0.00331EPSS
Exploits0References7Affected Software1
vulnersOsv
vulnersOsv
added 2024/05/23 2:0 p.m.4 views

amazon-sagemaker-jupyter-scheduler (>=3.2.1 <=3.2.2), argo-jupyter-scheduler (>=0.0.1 <=2024.6.1rc1) +3 more potentially affected by CVE-2024-28188 via jupyter-scheduler (=2.12.0)

jupyter-scheduler PYPI version =2.12.0 is affected by a known vulnerability. The following packages have a transitive dependency on jupyter-scheduler and may be impacted: - amazon-sagemaker-jupyter-scheduler =3.2.1, =0.0.1, =0.1.0, =1.4.16, =1.2.0, =1.3.11 Source cves: CVE-2024-28188 Source...

5.3CVSS6AI score0.00331EPSS
Exploits0
OSV
OSV
added 2024/05/23 2:0 p.m.17 views

GHSA-V9G2-G7J4-4JXC jupyter-scheduler's endpoint is missing authentication

Impact jupyterscheduler is missing an authentication check in Jupyter Server on an API endpoint GET /scheduler/runtimeenvironments which lists the names of the Conda environments on the server. In affected versions, jupyterscheduler allows an unauthenticated user to obtain the list of Conda...

5.3CVSS5.1AI score0.00331EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2024/05/23 2:0 p.m.36 views

jupyter-scheduler's endpoint is missing authentication

Impact jupyterscheduler is missing an authentication check in Jupyter Server on an API endpoint GET /scheduler/runtimeenvironments which lists the names of the Conda environments on the server. In affected versions, jupyterscheduler allows an unauthenticated user to obtain the list of Conda...

5.3CVSS6.9AI score0.00331EPSS
Exploits0References8Affected Software1
NVD
NVD
added 2024/05/23 12:15 p.m.32 views

CVE-2024-28188

Jupyter Scheduler is collection of extensions for programming jobs to run now or run on a schedule. The list of conda environments of jupyter-scheduler users maybe be exposed, potentially revealing information about projects that a specific user may be working on. This vulnerability has been...

5.3CVSS5.1AI score0.00331EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/05/23 12:15 p.m.16 views

CVE-2024-28188

Jupyter Scheduler is collection of extensions for programming jobs to run now or run on a schedule. The list of conda environments of jupyter-scheduler users maybe be exposed, potentially revealing information about projects that a specific user may be working on. This vulnerability has been...

5.3CVSS5.9AI score0.00331EPSS
Exploits0References3
OSV
OSV
added 2024/05/23 12:15 p.m.54 views

UBUNTU-CVE-2024-28188

Jupyter Scheduler is collection of extensions for programming jobs to run now or run on a schedule. The list of conda environments of jupyter-scheduler users maybe be exposed, potentially revealing information about projects that a specific user may be working on. This vulnerability has been...

5.3CVSS5.7AI score0.00331EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/05/23 11:54 a.m.41 views

CVE-2024-28188 jupyter-scheduler's endpoint is missing authentication

Jupyter Scheduler is collection of extensions for programming jobs to run now or run on a schedule. The list of conda environments of jupyter-scheduler users maybe be exposed, potentially revealing information about projects that a specific user may be working on. This vulnerability has been...

5.3CVSS5.1AI score0.00331EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/23 11:54 a.m.13 views

CVE-2024-28188 jupyter-scheduler's endpoint is missing authentication

Jupyter Scheduler is collection of extensions for programming jobs to run now or run on a schedule. The list of conda environments of jupyter-scheduler users maybe be exposed, potentially revealing information about projects that a specific user may be working on. This vulnerability has been...

5.3CVSS5.2AI score0.00331EPSS
Exploits0References2
CVE
CVE
added 2024/05/23 11:54 a.m.99 views

CVE-2024-28188

The vulnerability CVE-2024-28188 affects the Jupyter Scheduler extension, where an unauthenticated API endpoint can expose the list of Conda environments for a server’s jupyter-scheduler users. Root cause: missing authentication on the runtime_environments endpoint in Jupyter Server. Impact: disc...

5.3CVSS5AI score0.00331EPSS
Exploits0References2
OSV
OSV
added 2024/05/23 11:54 a.m.25 views

CVE-2024-28188 jupyter-scheduler's endpoint is missing authentication

Jupyter Scheduler is collection of extensions for programming jobs to run now or run on a schedule. The list of conda environments of jupyter-scheduler users maybe be exposed, potentially revealing information about projects that a specific user may be working on. This vulnerability has been...

5.3CVSS5.2AI score0.00331EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/05/23 12:0 a.m.5 views

Jupyter Scheduler 安全漏洞

Jupyter Scheduler is a JupyterLab extension for running laptop jobs from the Jupyter organization. A security vulnerability exists in Jupyter Scheduler that stems from the fact that a user's list of conda environments may be publicly available, potentially revealing information about the projects...

5.3CVSS5.3AI score0.00331EPSS
Exploits0References3
Rows per page
Query Builder