All 4 CVE vulnerabilities found in nbconvert, with AI-generated Chinese analysis, references, and POCs.
Vendor: jupyter
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-39378 | nbconvert has an Arbitrary File Read via Path Traversal in HTMLExporter Image Embedding CWE-22 | 6.5 | Medium | 2026-04-21 |
| CVE-2026-39377 | nbconvert has an Arbitrary File Write via Path Traversal in Cell Attachment Filenames CWE-22 | 6.5 | Medium | 2026-04-21 |
| CVE-2025-53000 | nbconvert has an uncontrolled search path that leads to unauthorized code execution on Windows CWE-427 | 8.8AI | HighAI | 2025-12-17 |
| CVE-2021-32862 | nbconvert vulnerable to cross-site scripting (XSS) via multiple exploit paths CWE-79 | 7.5 | High | 2022-08-18 |
All 4 known CVE vulnerabilities affecting nbconvert with full Chinese analysis, references, and POCs where available.