VDB

GCVE-110-MAGEIA-2014-320

GCVE-110-MAGEIA-2014-320
Advisory Published
Vulnetix · Advisory published August 6, 2014
In IPython before 1.2, the origin of websocket requests was not verified within the IPython notebook server. If an attacker has knowledge of an IPython kernel id they can run arbitrary code on a user's machine when the client visits a crafted malicious page (CVE-2014-3429).

Affected Products

VendorProductVersionsPlatforms
Mageiaipython0 (affected), 1.1.0-3.1.mga4 (unaffected)
Mageiaipython0 (affected), 0.13.2-1.1.mga3 (unaffected)

Browse GCVE Records

73,196 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›