All 3 CVE vulnerabilities found in jupyter-server-proxy, with AI-generated Chinese analysis, references, and POCs.
Vendor: jupyterhub
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-35225 | Jupyter Server Proxy has a reflected XSS issue in host parameter CWE-79 | 9.7 | Critical | 2024-06-11 |
| CVE-2024-28179 | Jupyter Server Proxy's Websocket Proxying does not require authentication CWE-306 | 9.1 | Critical | 2024-03-20 |
| CVE-2022-21697 | SSRF vulnerability (requires authentication) CWE-918 | 6.3 | Medium | 2022-01-25 |
All 3 known CVE vulnerabilities affecting jupyter-server-proxy with full Chinese analysis, references, and POCs where available.