CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 6 hours ago•4 views

CVE-2026-6658

The CVE-2026-6658 issue affects jupyter/nbconvert versions <= 7.17.0. The vulnerability arises because the data_mermaid block in share/templates/lab/base.html.j2 renders text/vnd.mermaid cell output directly into HTML without escaping, enabling Cross-site Scripting (XSS) by breaking out of the...

5.4CVSS6.3AI score

Cvelist•added 6 hours ago•8 views

CVE-2026-6658 Cross-site Scripting (XSS) in jupyter/nbconvert

5.4CVSS

EUVD•added 6 hours ago•5 views

EUVD-2026-39642

5.4CVSS6.3AI score

Tenable Nessus•added 2 days ago•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-44727

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jupyter Server is the backend for Jupyter web applications. Prior to 2.20, the nbconvert HTTP handlers in jupyterserver render user-authored notebook HTML under...

9.3CVSS5.9AI score0.00239EPSS

NVD•added 4 days ago•8 views

CVE-2026-44727

Jupyter Server is the backend for Jupyter web applications. Prior to 2.20, the nbconvert HTTP handlers in jupyterserver render user-authored notebook HTML under the Jupyter origin without a sandbox directive in their Content-Security-Policy. Combined with nbconvert.HTMLExporter's default...

9.3CVSS0.00239EPSS

Exploits0References2

Cvelist•added 4 days ago•19 views

CVE-2026-44727 Jupyter Server: Stored XSS in `NbconvertFileHandler` / `NbconvertPostHandler` via missing `sandbox` CSP

9.3CVSS0.00239EPSS

Exploits0References2

CVE•added 4 days ago•21 views

CVE-2026-44727

Jupyter Server (prior to 2.20) is affected by a stored XSS in the nbconvert HTML export path. The nbconvert HTTP handlers NbconvertFileHandler and NbconvertPostHandler render notebook HTML under the Jupyter origin without a sandbox directive in Content-Security-Policy, and NbconvertHTMLExporter’s...

9.3CVSS5.9AI score0.00239EPSS

Exploits0References2

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability in nbconvert

The GitHub Security Lab identified sixteen ways to exploit a cross-site scripting vulnerability in nbconvert. When using nbconvert to generate an HTML version of a user-controllable notebook, it is possible to inject arbitrary HTML, which may lead to cross-site scripting XSS vulnerabilities if...

7.5CVSS6.2AI score0.01102EPSS

Exploits1References1

OSV•added 2026/06/18 3:4 p.m.•17 views

GHSA-FCW5-X6J4-CCMP Jupyter Server: Stored XSS in `NbconvertFileHandler` / `NbconvertPostHandler` via missing `sandbox` CSP

The nbconvert HTTP handlers in jupyterserver render user-authored notebook HTML under the Jupyter origin without a sandbox directive in their Content-Security-Policy. Combined with nbconvert.HTMLExporter's default non-sanitizing behavior, a notebook carrying an HTML payload in a displaydata outpu...

9.3CVSS5.3AI score0.00239EPSS

Github Security Blog•added 2026/06/18 3:4 p.m.•15 views

Jupyter Server: Stored XSS in `NbconvertFileHandler` / `NbconvertPostHandler` via missing `sandbox` CSP

9.3CVSS5.3AI score0.00239EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2026/06/18 12:0 a.m.•13 views

PT-2026-50718

Name of the Vulnerable Software and Affected Versions jupyter-server versions prior to 2.20.0 Description The nbconvert HTTP handlers render user-authored notebook HTML under the Jupyter origin without a sandbox directive in their Content-Security-Policy CSP, which is a security layer that helps...

9.3CVSS6AI score0.00239EPSS

Exploits0References7

OSV•added 2026/05/09 12:30 p.m.•5 views

OESA-2026-2215 python-nbconvert security update

The nbconvert tool, jupyter nbconvert, converts notebooks to various other formats via Jinja templates. The nbconvert tool allows you to convert an .ipynb notebook file into various static formats including HTML, LaTeX, PDF, Reveal JS, Markdown md, ReStructured Text rst and executable script...

OSV•added 2026/05/03 9:58 a.m.•4 views

OESA-2026-2196 python-nbconvert security update

OSV•added 2026/05/03 9:58 a.m.•8 views

OESA-2026-2195 python-nbconvert security update

SUSE CVE•added 2026/04/24 1:36 a.m.•8 views

SUSE CVE-2025-53000

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions of nbconvert up to and including 7.16.6 on Windows have a vulnerability in which converting a notebook containing SVG output to a PDF results in unauthorized code execution...

7.8CVSS5.9AI score0.00233EPSS

Exploits1References2

RedhatCVE•added 2026/04/22 8:20 p.m.•7 views

CVE-2026-39378

A flaw was found in nbconvert, a tool used to convert Jupyter notebooks. A malicious notebook can exploit this vulnerability when the HTMLExporter.embedimages setting is enabled. This allows for path traversal in image references, which can lead to arbitrary file read. Consequently, sensitive fil...

6.5CVSS5.8AI score0.00306EPSS

Exploits0References5

SUSE CVE•added 2026/04/22 1:37 a.m.•5 views

SUSE CVE-2026-39377

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions 6.5 through 7.17.0 allow arbitrary file writes to locations outside the intended output directory when processing notebooks containing crafted cell attachment filenames. The...

6.5CVSS5.9AI score0.00266EPSS

SUSE CVE•added 2026/04/22 1:37 a.m.•4 views

SUSE CVE-2026-39378

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. In versions 6.5 through 7.17.0, when HTMLExporter.embedimages=True, nbconvert's markdown renderer allows arbitrary file read via path traversal in image references. A malicious notebook...