CVE-2024-22420

MEDIUM6.5EPSS 0.34%

JupyterLab vulnerable to SXSS in Markdown Preview

Published: 1/19/2024Modified: 2/20/2024

Also known as:GHSA-4m77-cmpx-vjc4BIT-jupyter-base-notebook-2024-22420BIT-jupyterlab-2024-22420BIT-jupyter-notebook-2024-22420

Description

### Impact The vulnerability depends on user interaction by opening a malicious notebook with Markdown cells, or Markdown file using JupyterLab preview feature. A malicious user can access any data that the attacked user has access to as well as perform arbitrary requests acting as the attacked user. ### Patches JupyterLab v4.0.11 was patched. ### Workarounds Users can either disable the table of contents extension by running: ```bash jupyter labextension disable @jupyterlab/toc-extension:registry ``` ### References Vulnerability reported via the [bug bounty program](https://app.intigriti.com/programs/jupyter/jupyter/detail) [sponsored by the European Commission](https://commission.europa.eu/news/european-commissions-open-source-programme-office-starts-bug-bounties-2022-01-19_en) and hosted on the [Intigriti platform](https://www.intigriti.com/).

Affected packages (6)

Bitnami/jupyter-base-notebook>= 7.0.0
Bitnami/jupyterlab>= 4.0.0, < 4.2.4
Bitnami/jupyter-notebook>= 7.0.0, < 7.0.7
Debian/jupyterlabfrom 0, < 4.0.11+ds1-1
PyPI/jupyterlab>= 4.0.0, < 4.0.11
PyPI/notebook>= 7.0.0, < 7.0.7

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM6.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Description

Affected packages (6)

CVSS scores

References (8)