3 matches found
a-mailx (=0.1.0), aepsych (>=0.3.0 <=0.4.0) +180 more potentially affected by CVE-2026-39378 via nbconvert (>=6.5.0 <=7.17.0)
nbconvert PYPI version =6.5.0, =0.3.0, =0.9.5, =0.1.0, =1.0.1, =1.0.1, =0.0.1, =1.0.0, =0.1.0, =0.0.1, =0.1.0, =0.1.0, =0.1.0, =0.1.10, =0.1.20 and more Source cves: CVE-2026-39378 Source advisory: OSV:GHSA-7JQV-FW35-GMX9...
UBUNTU-CVE-2026-39378
The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. In versions 6.5 through 7.17.0, when HTMLExporter.embedimages=True, nbconvert's markdown renderer allows arbitrary file read via path traversal in image references. A malicious notebook...
CVE-2026-39378
creationtimestamp| type| source ---|---|--- 2026-04-20 16:16:06+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-39378 2026-04-21 02:31:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjxwvtauhz2r...