CVE-2026-39378 — nbconvert has an Arbitrary File Read via Path Traversal in HTMLExporter Image Em

Description

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. In versions 6.5 through 7.17.0, when `HTMLExporter.embed_images=True`, nbconvert's markdown renderer allows arbitrary file read via path traversal in image references. A malicious notebook can exfiltrate sensitive files from the conversion host by embedding them as base64 data URIs in the output HTML. nbconvert 7.17.1 contains a fix. As a workaround, do not enable `HTMLExporter.embed_images`; it is not enabled by default.

How to fix CVE-2026-39378

To remediate CVE-2026-39378, upgrade the affected package to a fixed version below.

—no fix listed
—upgrade to 7.17.1 or later

Is CVE-2026-39378 being exploited?

Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0
>= 6.5.0, < 7.17.1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM6.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

References (5)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2026-39378
ADVISORYsecurity-tracker.debian.org/tracker/CVE-2026-39378
PATCHgithub.com/jupyter/nbconvert
WEBgithub.com/jupyter/nbconvert/releases/tag/v7.17.1
WEB