EPSS
Percentile
30.1%
jupyterhub_kubespawner is vulnerable to authorization bypass. An attacker is able to submit specific usernames which will grant access to the default server of the other users that uses the same username.
github.com/jupyterhub/kubespawner/commit/3dfe870a7f5e98e2e398b01996ca6b8eff4bb1d0
github.com/jupyterhub/kubespawner/security/advisories/GHSA-v7m9-9497-p9gr