Описание
IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-infra-legacy/trusty | not-affected | 1.2.1-2 |
| lucid | not-affected | |
| precise | released | 0.12.1+dfsg-0ubuntu1.1 |
| trusty | not-affected | 1.2.1-2 |
| trusty/esm | not-affected | 1.2.1-2 |
| upstream | released | 1.2.0~rc1-1 |
Показывать по
10
EPSS
Процентиль: 84%
0.02089
Низкий
6.8 Medium
CVSS2
Связанные уязвимости
nvd
больше 11 лет назад
IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page.
debian
больше 11 лет назад
IPython Notebook 0.12 through 1.x before 1.2 does not validate the ori ...
CVSS3: 9.8
github
больше 3 лет назад
IPython Notebook vulnerable to improper validation of the origin of websocket requests
EPSS
Процентиль: 84%
0.02089
Низкий
6.8 Medium
CVSS2