CVE-2024-43805
- EPSS 0.2%
- Published 28.08.2024 20:15:07
- Last modified 30.08.2024 15:56:16
jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. This vulnerability depends on user interaction by opening a malicious notebook with Markdown cells, or Markdown file using...
CVE-2024-39700
- EPSS 3.39%
- Published 16.07.2024 18:15:07
- Last modified 04.09.2025 18:46:50
JupyterLab extension template is a `copier` template for JupyterLab extensions. Repositories created using this template with `test` option include `update-integration-tests.yml` workflow which has an RCE vulnerability. Extension authors hosting the...
CVE-2024-22420
- EPSS 0.45%
- Published 19.01.2024 21:15:09
- Last modified 21.11.2024 08:56:15
JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook and Architecture. This vulnerability depends on user interaction by opening a malicious Markdown file using JupyterLab preview feature. ...
CVE-2024-22421
- EPSS 0.14%
- Published 19.01.2024 21:15:09
- Last modified 21.11.2024 08:56:15
JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook and Architecture. Users of JupyterLab who click on a malicious link may get their `Authorization` and `XSRFToken` tokens exposed to a th...
CVE-2021-32797
- EPSS 1.14%
- Published 09.08.2021 21:15:08
- Last modified 21.11.2024 06:07:45
JupyterLab is a user interface for Project Jupyter which will eventually replace the classic Jupyter Notebook. In affected versions untrusted notebook can execute code on load. In particular JupyterLab doesn’t sanitize the action attribute of html `<...