Vulnerabilities > CVE-2023-51277 - Unspecified vulnerability in Tinowagner Jupyter Notebook Viewer
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
nbviewer-app (aka Jupyter Notebook Viewer) before 0.1.6 has the get-task-allow entitlement for release builds.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 6 |
References
- https://developer.apple.com/documentation/security/notarizing_macos_software_before_distribution/resolving_common_notarization_issues#3087731
- https://developer.apple.com/documentation/security/notarizing_macos_software_before_distribution/resolving_common_notarization_issues#3087731
- https://github.com/tuxu/nbviewer-app/commit/dc1e4ddf64c78e13175a39b076fa0646fc62e581
- https://github.com/tuxu/nbviewer-app/commit/dc1e4ddf64c78e13175a39b076fa0646fc62e581
- https://github.com/tuxu/nbviewer-app/compare/0.1.5...0.1.6
- https://github.com/tuxu/nbviewer-app/compare/0.1.5...0.1.6
- https://www.youtube.com/watch?v=c0nawqA_bdI
- https://www.youtube.com/watch?v=c0nawqA_bdI