Lucene search
Veracode Vulnerability DatabaseVERACODE:45091HistoryJan 19, 2024 - 2:30 p.m.
Path Traversal
2024-01-1914:30:05
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
vulnerability
path traversal
file system
access control
jupyter-lsp
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.6
Confidence
High
EPSS
0.001
Percentile
39.4%
jupyter_lsp is vulnerable to Path Traversal. The vulnerability due to Installations of jupyter-lsp running in environments without configured file system access control. This flaw allows an attacker to modify the jupyter root directory.
Related
osv
osv
Unsecured endpoints in the jupyter-lsp server extension
2024-01-18 16:12:28
CVE-2024-22415
2024-01-18 21:15:09
CGA-g7rm-8c92-wqfc
2024-06-06 12:27:23
github
github
Unsecured endpoints in the jupyter-lsp server extension
2024-01-18 16:12:28
cgr
cgr
CVE-2024-22415 vulnerabilities
2024-05-19 03:07:16
cvelist
cvelist
CVE-2024-22415 Unsecured endpoints in the jupyter-lsp server extension
2024-01-18 20:27:39
nvd
nvd
CVE-2024-22415
2024-01-18 21:15:09
prion
prion
Design/Logic Flaw
2024-01-18 21:15:00
cve
cve
CVE-2024-22415
2024-01-18 21:15:09
vulnrichment
vulnrichment
CVE-2024-22415 Unsecured endpoints in the jupyter-lsp server extension
2024-01-18 20:27:39
wolfi
wolfi
CVE-2024-22415 vulnerabilities
2024-10-01 21:13:23
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.6
Confidence
High
EPSS
0.001
Percentile
39.4%
Related for VERACODE:45091