CVE-2023-39968
CVSS V2 None
CVSS V3 None
Description
jupyter-server is the backend for Jupyter web applications. Open Redirect Vulnerability. Maliciously crafted login links to known Jupyter Servers can cause successful login or an already logged-in session to be redirected to arbitrary sites, which should be restricted to Jupyter Server-served URLs. This issue has been addressed in commit `29036259` which is included in release 2.7.2. Users are advised to upgrade. There are no known workarounds for this vulnerability.
Overview
- CVE ID
- CVE-2023-39968
- Assigner
- GitHub_M
- Vulnerability Status
- PUBLISHED
- Published Version
- 2023-08-28T20:16:20.851Z
- Last Modified Date
- 2023-08-28T20:16:20.851Z
Weakness Enumerations
References
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-39968 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39968 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-25 18:51:14 | Added to TrackCVE |