CVE-2024-43805
- EPSS 0.2%
- Veröffentlicht 28.08.2024 20:15:07
- Zuletzt bearbeitet 30.08.2024 15:56:16
jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. This vulnerability depends on user interaction by opening a malicious notebook with Markdown cells, or Markdown file using...
CVE-2024-39700
- EPSS 3.39%
- Veröffentlicht 16.07.2024 18:15:07
- Zuletzt bearbeitet 04.09.2025 18:46:50
JupyterLab extension template is a `copier` template for JupyterLab extensions. Repositories created using this template with `test` option include `update-integration-tests.yml` workflow which has an RCE vulnerability. Extension authors hosting the...
CVE-2024-22420
- EPSS 0.45%
- Veröffentlicht 19.01.2024 21:15:09
- Zuletzt bearbeitet 21.11.2024 08:56:15
JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook and Architecture. This vulnerability depends on user interaction by opening a malicious Markdown file using JupyterLab preview feature. ...
CVE-2024-22421
- EPSS 0.14%
- Veröffentlicht 19.01.2024 21:15:09
- Zuletzt bearbeitet 21.11.2024 08:56:15
JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook and Architecture. Users of JupyterLab who click on a malicious link may get their `Authorization` and `XSRFToken` tokens exposed to a th...
CVE-2021-32797
- EPSS 1.14%
- Veröffentlicht 09.08.2021 21:15:08
- Zuletzt bearbeitet 21.11.2024 06:07:45
JupyterLab is a user interface for Project Jupyter which will eventually replace the classic Jupyter Notebook. In affected versions untrusted notebook can execute code on load. In particular JupyterLab doesn’t sanitize the action attribute of html `<...