Path Traversal Vulnerability in Jupyter Server by Project Jupyter
CVE-2026-5422

6.8MEDIUM

Key Information:

Vendor: Jupyter
Status: Jupyter/jupyter
Vendor: CVE Published:; 2 June 2026

What is CVE-2026-5422?

A path traversal vulnerability exists in Jupyter Server version 2.17.0 due to improper checks in the root directory boundary within the _get_os_path() function. The function uses startswith(root) without a trailing path separator, allowing unauthorized access to sibling directories. Additionally, the to_os_path() function fails to sanitize path components by not removing '..', which can lead to unauthorized read/write access to files outside the intended directories. This could expose sensitive data, particularly in shared hosting environments where security misconfigurations may arise.

Affected Version(s)

jupyter/jupyter <= unspecified

References

https://huntr.com/bounties/24a36953-6490-466f-8cb2-a90d1c...

CVSS V3.0

Score:

6.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 2, 2026
Vulnerability Reserved
Apr 2, 2026

CVE-2026-5422 Data

JSON