VDB
CVE-2024-43805
CVE-2024-43805
PUBLISHED
CVSS 8.5 HIGH
HTML injection in Jupyter Notebook and JupyterLab leading to DOM Clobbering
EPSS 0.43% · 62.8th percentile
Risk Scores
CVSS 4.0
8.5
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
EPSS Score
0.43%
62.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | jupyter-base-notebook | 7.0.0 |
| Bitnami | jupyter-base-notebook | 7.0.0, 7.0.0, 7.0.0 |
| Bitnami | jupyter-notebook | 7.0.0 |
| Bitnami | jupyterlab | 0 |
| Bitnami | jupyter-notebook | 7.0.0, 7.0.0, 7.0.0 |
| Bitnami | jupyterlab | 0, 0, 0 |
Exploit Intelligence
- https://github.com/jupyterlab/jupyterlab/security/advisories/GHSA-9q39-rmj3-p4r2 (circl)
- vulns.yml (github-poc)
- vulns.yml (github-poc)
- vulns.yml (github-poc)
- vulns.yml (github-poc)
- vulns.yml (github-poc)
- vulns.yml (github-poc)
- vulns.yml (github-poc)
- vulns.yml (github-poc)
- vulns.yml (github-poc)
…and 1 more exploits
Timeline
- Jan 21, 1970 Security Advisory
- Aug 28, 2024 CVE Published
- Aug 29, 2024 EPSS Score
- Aug 30, 2024 CVE Updated
- Sep 18, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 9, 2024 EPSS Score
- Oct 29, 2024 EPSS Score
- Nov 18, 2024 EPSS Score
- Dec 9, 2024 EPSS Score
- Dec 30, 2024 EPSS Score
- Jan 19, 2025 EPSS Score