An Open Redirect vulnerability for all browsers in Jupyter Notebook before 5.7.7 and some browsers (Chrome, Firefox) in JupyterHub before 0.9.5 allows crafted links to the login page, which will redirect to a malicious site after successful login. Servers running on a base_url prefix are not affected.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-03-28T15:30:39
Updated: 2024-08-04T22:17:19.683Z
Reserved: 2019-03-28T00:00:00
Link: CVE-2019-10255
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-03-28T16:29:00.567
Modified: 2023-11-07T03:02:28.030
Link: CVE-2019-10255
Redhat
No data.