vulnerability

Debian: CVE-2019-10255: jupyter-notebook, jupyterhub -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:M/Au:N/C:P/I:P/A:N)	03/28/2019	07/30/2024	07/30/2024

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:N)

Published

03/28/2019

Added

07/30/2024

Modified

07/30/2024

Description

An Open Redirect vulnerability for all browsers in Jupyter Notebook before 5.7.7 and some browsers (Chrome, Firefox) in JupyterHub before 0.9.5 allows crafted links to the login page, which will redirect to a malicious site after successful login. Servers running on a base_url prefix are not affected.

Solution(s)

debian-upgrade-jupyter-notebookdebian-upgrade-jupyterhub

References

CVE-2019-10255
https://attackerkb.com/topics/CVE-2019-10255

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today