137 matches found
PT-2026-50718
Name of the Vulnerable Software and Affected Versions jupyter-server versions prior to 2.20.0 Description The nbconvert HTTP handlers render user-authored notebook HTML under the Jupyter origin without a sandbox directive in their Content-Security-Policy CSP, which is a security layer that helps...
Astra Linux – Vulnerability in nbconvert
The GitHub Security Lab identified sixteen ways to exploit a cross-site scripting vulnerability in nbconvert. When using nbconvert to generate an HTML version of a user-controllable notebook, it is possible to inject arbitrary HTML, which may lead to cross-site scripting XSS vulnerabilities if...
OESA-2026-2215 python-nbconvert security update
The nbconvert tool, jupyter nbconvert, converts notebooks to various other formats via Jinja templates. The nbconvert tool allows you to convert an .ipynb notebook file into various static formats including HTML, LaTeX, PDF, Reveal JS, Markdown md, ReStructured Text rst and executable script...
OESA-2026-2196 python-nbconvert security update
The nbconvert tool, jupyter nbconvert, converts notebooks to various other formats via Jinja templates. The nbconvert tool allows you to convert an .ipynb notebook file into various static formats including HTML, LaTeX, PDF, Reveal JS, Markdown md, ReStructured Text rst and executable script...
OESA-2026-2195 python-nbconvert security update
The nbconvert tool, jupyter nbconvert, converts notebooks to various other formats via Jinja templates. The nbconvert tool allows you to convert an .ipynb notebook file into various static formats including HTML, LaTeX, PDF, Reveal JS, Markdown md, ReStructured Text rst and executable script...
SUSE CVE-2025-53000
The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions of nbconvert up to and including 7.16.6 on Windows have a vulnerability in which converting a notebook containing SVG output to a PDF results in unauthorized code execution...
CVE-2026-39378
A flaw was found in nbconvert, a tool used to convert Jupyter notebooks. A malicious notebook can exploit this vulnerability when the HTMLExporter.embedimages setting is enabled. This allows for path traversal in image references, which can lead to arbitrary file read. Consequently, sensitive fil...
SUSE CVE-2026-39377
The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions 6.5 through 7.17.0 allow arbitrary file writes to locations outside the intended output directory when processing notebooks containing crafted cell attachment filenames. The...
SUSE CVE-2026-39378
The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. In versions 6.5 through 7.17.0, when HTMLExporter.embedimages=True, nbconvert's markdown renderer allows arbitrary file read via path traversal in image references. A malicious notebook...
OPENSUSE-SU-2026:10603-1 jupyter-nbconvert-7.17.1-1.1 on GA media
These are all security issues fixed in the jupyter-nbconvert-7.17.1-1.1 package on the GA media of openSUSE Tumbleweed...
a-mailx (=0.1.0), aepsych (>=0.3.0 <=0.4.0) +180 more potentially affected by CVE-2026-39378 via nbconvert (>=6.5.0 <=7.17.0)
nbconvert PYPI version =6.5.0, =0.3.0, =0.9.5, =0.1.0, =1.0.1, =1.0.1, =0.0.1, =1.0.0, =0.1.0, =0.0.1, =0.1.0, =0.1.0, =0.1.0, =0.1.10, =0.1.20 and more Source cves: CVE-2026-39378 Source advisory: OSV:GHSA-7JQV-FW35-GMX9...
EUVD-2026-24025
nbconvert has an Arbitrary File Read via Path Traversal in HTMLExporter Image Embedding...
nbconvert has an Arbitrary File Read via Path Traversal in HTMLExporter Image Embedding
Summary When HTMLExporter.embedimages=True, nbconvert's markdown renderer allows arbitrary file read via path traversal in image references. A malicious notebook can exfiltrate sensitive files from the conversion host by embedding them as base64 data URIs in the output HTML. Patches Upgrade to...
GHSA-7JQV-FW35-GMX9 nbconvert has an Arbitrary File Read via Path Traversal in HTMLExporter Image Embedding
Summary When HTMLExporter.embedimages=True, nbconvert's markdown renderer allows arbitrary file read via path traversal in image references. A malicious notebook can exfiltrate sensitive files from the conversion host by embedding them as base64 data URIs in the output HTML. Patches Upgrade to...
EUVD-2026-24023
nbconvert has an Arbitrary File Write via Path Traversal in Cell Attachment Filenames...
nbconvert has an Arbitrary File Write via Path Traversal in Cell Attachment Filenames
Arbitrary File Write via Path Traversal in Cell Attachment Filenames Summary nbconvert allows arbitrary file writes to locations outside the intended output directory when processing notebooks containing crafted cell attachment filenames. The ExtractAttachmentsPreprocessor passes attachment...
a-mailx (=0.1.0), aepsych (>=0.3.0 <=0.4.0) +180 more potentially affected by CVE-2026-39377 via nbconvert (>=6.5.0 <=7.17.0)
nbconvert PYPI version =6.5.0, =0.3.0, =0.9.5, =0.1.0, =1.0.1, =1.0.1, =0.0.1, =1.0.0, =0.1.0, =0.0.1, =0.1.0, =0.1.0, =0.1.0, =0.1.10, =0.1.20 and more Source cves: CVE-2026-39377 Source advisory: OSV:GHSA-4C99-QJ7H-P3VG...
GHSA-4C99-QJ7H-P3VG nbconvert has an Arbitrary File Write via Path Traversal in Cell Attachment Filenames
Arbitrary File Write via Path Traversal in Cell Attachment Filenames Summary nbconvert allows arbitrary file writes to locations outside the intended output directory when processing notebooks containing crafted cell attachment filenames. The ExtractAttachmentsPreprocessor passes attachment...
CVE-2026-39377
A flaw was found in nbconvert, a tool used to convert Jupyter notebooks. When processing notebooks containing specially crafted cell attachment filenames, a remote attacker can exploit a path traversal vulnerability. This allows the attacker to write arbitrary files to locations outside the...
a-mailx (=0.1.0), aepsych (>=0.3.0 <=0.4.0) +180 more potentially affected by CVE-2026-39378 via nbconvert (>=6.5.0 <=7.17.0)
nbconvert PYPI version =6.5.0, =0.3.0, =0.9.5, =0.1.0, =1.0.1, =1.0.1, =0.0.1, =1.0.0, =0.1.0, =0.0.1, =0.1.0, =0.1.0, =0.1.0, =0.1.10, =0.1.20 and more Source cves: CVE-2026-39378 Source advisory: SNYK:PYTHON-NBCONVERT-16115385...