Unauthenticated Attacker Can Leak NTLMv2 Password Hash and Gain Access to Windows Machine or Other Network-Accessible Machines
CVE-2024-35178

7.5HIGH

Key Information:

Vendor: Jupyter-server
Status: Jupyter Server
Vendor: CVE Published:; 6 June 2024

🔔 Create Jupyter-server Vulnerability Alert

What is CVE-2024-35178?

A vulnerability in Jupyter Server running on Windows allows unauthenticated attackers to exploit a weakness to leak the NTLMv2 password hash of the Windows user operating the Jupyter Server. This exposure enables attackers to potentially crack the password, gaining unauthorized access to the hosting Windows machine or other network-accessible resources. Furthermore, via NTLM relay attacks, an attacker may exploit this vulnerability to access additional network machines or third-party services without needing to crack the credential. The issue has been addressed in Jupyter Server version 2.14.1.

Affected Version(s)

jupyter_server < 2.14.1

References

https://github.com/jupyter-server/jupyter_server/security...

x_refsource_CONFIRM

https://github.com/jupyter-server/jupyter_server/commit/7...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 6, 2024
Vulnerability Reserved
May 10, 2024

JSON