exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2024-22420

около 2 лет назад

JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook and Architecture. This vulnerability depends on user interaction by opening a malicious Markdown file using JupyterLab preview feature. A malicious user can access any data that the attacked user has access to as well as perform arbitrary requests acting as the attacked user. JupyterLab version 4.0.11 has been patched. Users are advised to upgrade. Users unable to upgrade should disable the table of contents extension.

CVSS3: 6.5

EPSS: Низкий

CVE-2024-22420

около 2 лет назад

JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook and Architecture. This vulnerability depends on user interaction by opening a malicious Markdown file using JupyterLab preview feature. A malicious user can access any data that the attacked user has access to as well as perform arbitrary requests acting as the attacked user. JupyterLab version 4.0.11 has been patched. Users are advised to upgrade. Users unable to upgrade should disable the table of contents extension.

CVSS3: 6.5

EPSS: Низкий

CVE-2024-22420

около 2 лет назад

JupyterLab is an extensible environment for interactive and reproducib ...

CVSS3: 6.5

EPSS: Низкий

GHSA-4m77-cmpx-vjc4

около 2 лет назад

JupyterLab vulnerable to SXSS in Markdown Preview

CVSS3: 6.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-22420 JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook and Architecture. This vulnerability depends on user interaction by opening a malicious Markdown file using JupyterLab preview feature. A malicious user can access any data that the attacked user has access to as well as perform arbitrary requests acting as the attacked user. JupyterLab version 4.0.11 has been patched. Users are advised to upgrade. Users unable to upgrade should disable the table of contents extension.	CVSS3: 6.5	0% Низкий	около 2 лет назад
CVE-2024-22420 JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook and Architecture. This vulnerability depends on user interaction by opening a malicious Markdown file using JupyterLab preview feature. A malicious user can access any data that the attacked user has access to as well as perform arbitrary requests acting as the attacked user. JupyterLab version 4.0.11 has been patched. Users are advised to upgrade. Users unable to upgrade should disable the table of contents extension.	CVSS3: 6.5	0% Низкий	около 2 лет назад
CVE-2024-22420 JupyterLab is an extensible environment for interactive and reproducib ...	CVSS3: 6.5	0% Низкий	около 2 лет назад
GHSA-4m77-cmpx-vjc4 JupyterLab vulnerable to SXSS in Markdown Preview	CVSS3: 6.5	0% Низкий	около 2 лет назад

Уязвимостей на страницу