CVE-2018-19351
jupyter-notebook - security update
6.1
MEDIUM
CVSS 3.1
EPSS 0.31%
Description
Jupyter Notebook before 5.7.1 allows XSS via an untrusted notebook because nbconvert responses are considered to have the same origin as the notebook server. In other words, nbconvert endpoints can execute JavaScript with access to the server API. In notebook/nbconvert/handlers.py, NbconvertFileHandler and NbconvertPostHandler do not set a Content Security Policy to prevent this.
How to fix CVE-2018-19351
To remediate CVE-2018-19351, upgrade the affected package to a fixed version below.
- —upgrade to 5.7.4-1 or later
- —upgrade to 4.2.3-4+deb9u1 or later
- —upgrade to 5.7.1 or later
- —upgrade to 107a89fce5f413fb5728c1c5d2c7788e1fb17491 or later
Is CVE-2018-19351 being exploited?
Low — EPSS is 0.3%, meaning exploitation activity has not been observed at scale.
Affected packages (4)
- from 0, < 5.7.4-1
- from 0, < 4.2.3-4+deb9u1
- from 0, < 5.7.1
- from 0, < 107a89fce5f413fb5728c1c5d2c7788e1fb17491 | from 0, < 5.7.1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 4.0 | — | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
| osv | CVSS 3.1 | MEDIUM6.1 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |