Jupyter Server Proxy@* Security Vulnerabilities and Issues — Jupyter Server Proxy@* CVE List

Lucene search

JupyterJupyter Server Proxy*

3 matches found

CVE•added 2022/01/25 2:15 p.m.•135 views

CVE-2022-21697

Jupyter Server Proxy is a Jupyter notebook server extension to proxy web services. Versions of Jupyter Server Proxy prior to 3.2.1 are vulnerable to Server-Side Request Forgery (SSRF). Any user deploying Jupyter Server or Notebook with jupyter-proxy-server extension enabled is affected. A lack of i...

7.1CVSS6.3AI score0.00378EPSS

CVE•added 2024/03/20 8:15 p.m.•94 views

CVE-2024-28179

Jupyter Server Proxy allows users to run arbitrary external processes alongside their Jupyter notebook servers and provides authenticated web access. Prior to versions 3.2.3 and 4.1.1, Jupyter Server Proxy did not check user authentication appropriately when proxying websockets, allowing unauthenti...

9.8CVSS9.3AI score0.00353EPSS

CVE•added 2024/06/11 10:15 p.m.•70 views

CVE-2024-35225

Jupyter Server Proxy allows users to run arbitrary external processes alongside their notebook server and provide authenticated web access to them. Versions of 3.x prior to 3.2.4 and 4.x prior to 4.2.0 have a reflected cross-site scripting (XSS) issue. The /proxy endpoint accepts a host path segmen...

9.6CVSS8.5AI score0.00801EPSS

Web