Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-24757

The Jupyter Server provides the backend (i.e. the core services, APIs, and REST endpoints) for Jupyter web applications. Prior to version 1.15.4, unauthorized actors can access sensitive information from server logs. Anytime a 5xx error is triggered, the auth cookie and other header values are recorded in Jupyter Server logs by default. Considering these logs do not require root access, an attacker can monitor these logs, steal sensitive auth/cookie information, and gain access to the Jupyter server. Jupyter Server version 1.15.4 contains a patch for this issue. There are currently no known workarounds.

Published

2022-03-23T21:15:08.143

Last Modified

2024-11-21T06:51:01.750

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Primary
CWE-532

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	jupyter	jupyter_server	< 1.15.4	Yes

References

https://github.com/jupyter-server/jupyter_server/commit/a5683aca0b0e412672ac6218d09f74d44ca0de5a Patch, Third Party Advisory ([email protected])
https://github.com/jupyter-server/jupyter_server/security/advisories/GHSA-p737-p57g-4cpr Third Party Advisory ([email protected])
https://github.com/jupyter-server/jupyter_server/commit/a5683aca0b0e412672ac6218d09f74d44ca0de5a Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/jupyter-server/jupyter_server/security/advisories/GHSA-p737-p57g-4cpr Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)