Vulnerabilities > Jupyter
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-31 | CVE-2022-24758 | Information Exposure Through Log Files vulnerability in Jupyter Notebook The Jupyter notebook is a web-based notebook environment for interactive computing. | 5.0 |
| 2022-03-23 | CVE-2022-24757 | Information Exposure Through Log Files vulnerability in Jupyter Server The Jupyter Server provides the backend (i.e. | 5.0 |
| 2022-01-25 | CVE-2022-21697 | Server-Side Request Forgery (SSRF) vulnerability in Jupyter Server Proxy Jupyter Server Proxy is a Jupyter notebook server extension to proxy web services. | 5.5 |
| 2021-11-04 | CVE-2021-41247 | Insufficient Session Expiration vulnerability in Jupyter Jupyterhub JupyterHub is an open source multi-user server for Jupyter notebooks. | 5.0 |
| 2021-11-03 | CVE-2021-41134 | Cross-site Scripting vulnerability in Jupyter Nbdime and Nbdime-Jupyterlab nbdime provides tools for diffing and merging of Jupyter Notebooks. | 3.5 |
| 2021-08-25 | CVE-2021-39159 | Code Injection vulnerability in Jupyter Binderhub BinderHub is a kubernetes-based cloud service that allows users to share reproducible interactive computing environments from code repositories. | 7.5 |
| 2021-08-09 | CVE-2021-32797 | Cross-site Scripting vulnerability in Jupyter Jupyterlab JupyterLab is a user interface for Project Jupyter which will eventually replace the classic Jupyter Notebook. | 6.8 |
| 2021-08-09 | CVE-2021-32798 | Cross-site Scripting vulnerability in Jupyter Notebook The Jupyter notebook is a web-based notebook environment for interactive computing. | 6.8 |
| 2021-01-13 | CVE-2020-36191 | Cross-Site Request Forgery (CSRF) vulnerability in Jupyter Jupyterhub 1.1.0 JupyterHub 1.1.0 allows CSRF in the admin panel via a request that lacks an _xsrf field, as demonstrated by a /hub/api/user request (to add or remove a user account). | 3.5 |
| 2020-12-21 | CVE-2020-26275 | Open Redirect vulnerability in Jupyter Server The Jupyter Server provides the backend (i.e. | 5.8 |