CVE-2024-22421

19.01.2024, 21:15

JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook and Architecture. Users of JupyterLab who click on a malicious link may get their `Authorization` and `XSRFToken` tokens exposed to a third party when running an older `jupyter-server` version. JupyterLab versions 4.1.0b2, 4.0.11, and 3.6.7 are patched. No workaround has been identified, however users should ensure to upgrade `jupyter-server` to version 2.7.2 or newer which includes a redirect vulnerability fix.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.6 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L
GitHub_M	CNA	7.6 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 29%

Vendor	Product	Version
jupyter	jupyterlab	𝑥 < 3.6.7
jupyter	jupyterlab	4.0.0 ≤ 𝑥 < 4.0.11
jupyter	notebook	7.0.0 ≤ 𝑥 < 7.0.7

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

jupyterlab

sid	4.0.11+ds1+~cs11.25.27-6 fixed
trixie	4.0.11+ds1+~cs11.25.27-6 fixed

Ubuntu Releases

Ubuntu Product

Codename

jupyter-notebook

plucky	not-affected
oracular	not-affected
noble	not-affected
mantic	ignored
lunar	ignored
jammy	not-affected
focal	not-affected
bionic	not-affected
xenial	dne
trusty	dne

jupyterlab

plucky	not-affected
oracular	not-affected
noble	dne
jammy	dne
focal	dne

Common Weakness Enumeration

CWE-23 - Relative Path Traversal
The software uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize sequences such as ".." that can resolve to a location that is outside of that directory.

References

https://github.com/jupyterlab/jupyterlab/commit/19bd9b96cb2e77170a67e43121637d0b5619e8c6

https://github.com/jupyterlab/jupyterlab/security/advisories/GHSA-44cc-43rp-5947

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQJKNRDRFMKGVRIYNNN6CKMNJDNYWO2H/

https://github.com/jupyterlab/jupyterlab/commit/19bd9b96cb2e77170a67e43121637d0b5619e8c6

https://github.com/jupyterlab/jupyterlab/security/advisories/GHSA-44cc-43rp-5947

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQJKNRDRFMKGVRIYNNN6CKMNJDNYWO2H/