Lucene search
GoogleOSV:PYSEC-2018-57HistoryMar 18, 2018 - 6:29 a.m.
PYSEC-2018-57
2018-03-1806:29:00
Google
osv.dev
14
EPSS
0.001
Percentile
30.4%
In Jupyter Notebook before 5.4.1, a maliciously forged notebook file can bypass sanitization to execute JavaScript in the notebook context. Specifically, invalid HTML is ‘fixed’ by jQuery after sanitization, making it dangerous.
Related
fedora
fedora
[SECURITY] Fedora 27 Update: python-notebook-5.2.1-2.fc27
2018-03-29 16:21:48
[SECURITY] Fedora 28 Update: python-notebook-5.4.0-2.fc28
2018-03-30 13:38:11
[SECURITY] Fedora 26 Update: python-notebook-5.0.0-2.fc26
2018-03-29 15:54:07
nessus
nessus
Ubuntu 16.04 ESM : IPython vulnerability (USN-4855-1)
2023-10-20 00:00:00
FreeBSD : Jupyter Notebook -- vulnerability (b3edc7d9-9af5-4daf-88f1-61f68f4308c2)
2018-03-20 00:00:00
Fedora 28 : python-notebook (2018-1fdcb294e3)
2019-01-03 00:00:00
mageia
mageia
Updated jupyter-notebook packages fix security vulnerability
2018-03-26 23:21:11
osv
osv
CVE-2018-8768
2018-03-18 06:29:00
ipython vulnerability
2021-03-15 22:41:35
Jupyter Notebook file bypasses sanitization, executes JavaScript
2018-07-12 12:00:00
cve
cve
CVE-2018-8768
2018-03-18 06:29:00
veracode
veracode
Remote Code Execution (RCE)
2018-03-16 04:33:36
prion
prion
Design/Logic Flaw
2018-03-18 06:29:00
openvas
openvas
Fedora Update for python-notebook FEDORA-2018-b621d86462
2018-03-30 00:00:00
Ubuntu: Security Advisory (USN-4855-1)
2023-01-27 00:00:00
Mageia: Security Advisory (MGASA-2018-0182)
2022-01-28 00:00:00
ubuntu
ubuntu
IPython vulnerability
2021-03-15 00:00:00
freebsd
freebsd
Jupyter Notebook -- vulnerability
2018-03-18 00:00:00
github
github
Jupyter Notebook file bypasses sanitization, executes JavaScript
2018-07-12 12:00:00
cvelist
cvelist
CVE-2018-8768
2018-03-18 06:00:00
ubuntucve
ubuntucve
CVE-2018-8768
2018-03-18 00:00:00
debiancve
debiancve
CVE-2018-8768
2018-03-18 06:29:00
nvd
nvd
CVE-2018-8768
2018-03-18 06:29:00
debian
debian
[SECURITY] [DLA 2432-1] jupyter-notebook security update
2020-11-19 04:53:40