cross-site inclusion (XSSI) of files in jupyter-server
CVE-2023-40170

4.6MEDIUM

Key Information:

Vendor

Jupyter-server

Status
Jupyter Server
Vendor
CVE Published:
28 August 2023

What is CVE-2023-40170?

jupyter-server is the backend for Jupyter web applications. Improper cross-site credential checks on /files/ URLs could allow exposure of certain file contents, or accessing files when opening untrusted files via "Open image in new tab". This issue has been addressed in commit 87a49272728 which has been included in release 2.7.2. Users are advised to upgrade. Users unable to upgrade may use the lower performance --ContentsManager.files_handler_class=jupyter_server.files.handlers.FilesHandler, which implements the correct checks.

Affected Version(s)

jupyter_server < 2.7.2

References

https://github.com/jupyter-server/jupyter_server/security...
x_refsource_CONFIRM
https://github.com/jupyter-server/jupyter_server/commit/8...
x_refsource_MISC
https://lists.fedoraproject.org/archives/list/package-ann...

CVSS V3.1

Score:
4.6
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.