vulnerability

Ubuntu: USN-5585-1 (CVE-2019-10255): Jupyter Notebook vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:M/Au:N/C:P/I:P/A:N)	Mar 28, 2019	Aug 31, 2022	May 1, 2023

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:N)

Published

Mar 28, 2019

Added

Aug 31, 2022

Modified

May 1, 2023

Description

An Open Redirect vulnerability for all browsers in Jupyter Notebook before 5.7.7 and some browsers (Chrome, Firefox) in JupyterHub before 0.9.5 allows crafted links to the login page, which will redirect to a malicious site after successful login. Servers running on a base_url prefix are not affected.

Solution(s)

ubuntu-upgrade-jupyter-notebookubuntu-upgrade-python-notebookubuntu-upgrade-python3-notebook

References

CVE-2019-10255
https://attackerkb.com/topics/CVE-2019-10255
NVD-CVE-2019-10255
UBUNTU-USN-5585-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today