Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/37335?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/37335?format=api", "vulnerability_id": "VCID-uds2-gzff-jfct", "summary": "JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. From 4.0.0 to 4.5.6, the allow-list of extensions that can be installed from PyPI Extension Manager (allowed_extensions_uris) is not correctly enforced by JupyterLab. The PyPI Extension Manager was not contained to packages listed on the default PyPI index. This vulnerability is fixed in 4.5.7.", "aliases": [ { "alias": "CVE-2026-42266" }, { "alias": "GHSA-37w4-hwhx-4rc4" }, { "alias": "PYSEC-2026-164" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/50418?format=api", "purl": "pkg:pypi/jupyterlab@4.5.7", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.7" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/50316?format=api", "purl": "pkg:pypi/jupyterlab@4.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5yap-6qrw-ybd9" }, { "vulnerability": "VCID-6ru3-na8t-nuab" }, { "vulnerability": "VCID-s9yf-vew9-skcj" }, { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50317?format=api", "purl": "pkg:pypi/jupyterlab@4.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50318?format=api", "purl": "pkg:pypi/jupyterlab@4.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50319?format=api", "purl": "pkg:pypi/jupyterlab@4.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/50320?format=api", "purl": "pkg:pypi/jupyterlab@4.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/50321?format=api", "purl": "pkg:pypi/jupyterlab@4.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/50322?format=api", "purl": "pkg:pypi/jupyterlab@4.0.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/50323?format=api", "purl": "pkg:pypi/jupyterlab@4.0.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/50324?format=api", "purl": "pkg:pypi/jupyterlab@4.0.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/50325?format=api", "purl": "pkg:pypi/jupyterlab@4.0.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/50326?format=api", "purl": "pkg:pypi/jupyterlab@4.0.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5yap-6qrw-ybd9" }, { "vulnerability": "VCID-s9yf-vew9-skcj" }, { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/50327?format=api", "purl": "pkg:pypi/jupyterlab@4.0.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/50328?format=api", "purl": "pkg:pypi/jupyterlab@4.0.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/50329?format=api", "purl": "pkg:pypi/jupyterlab@4.0.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.0.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/50330?format=api", "purl": "pkg:pypi/jupyterlab@4.1.0a1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.0a1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50331?format=api", "purl": "pkg:pypi/jupyterlab@4.1.0a2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.0a2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50332?format=api", "purl": "pkg:pypi/jupyterlab@4.1.0a3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.0a3" }, { "url": "http://public2.vulnerablecode.io/api/packages/50333?format=api", "purl": "pkg:pypi/jupyterlab@4.1.0a4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.0a4" }, { "url": "http://public2.vulnerablecode.io/api/packages/50334?format=api", "purl": "pkg:pypi/jupyterlab@4.1.0b0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.0b0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50335?format=api", "purl": "pkg:pypi/jupyterlab@4.1.0b1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.0b1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50336?format=api", "purl": "pkg:pypi/jupyterlab@4.1.0b2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.0b2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50337?format=api", "purl": "pkg:pypi/jupyterlab@4.1.0rc0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.0rc0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50338?format=api", "purl": "pkg:pypi/jupyterlab@4.1.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50339?format=api", "purl": "pkg:pypi/jupyterlab@4.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50340?format=api", "purl": "pkg:pypi/jupyterlab@4.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50341?format=api", "purl": "pkg:pypi/jupyterlab@4.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50342?format=api", "purl": "pkg:pypi/jupyterlab@4.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/50343?format=api", "purl": "pkg:pypi/jupyterlab@4.1.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/50344?format=api", "purl": "pkg:pypi/jupyterlab@4.1.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/50345?format=api", "purl": "pkg:pypi/jupyterlab@4.1.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/50346?format=api", "purl": "pkg:pypi/jupyterlab@4.1.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/50347?format=api", "purl": "pkg:pypi/jupyterlab@4.1.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.1.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/50348?format=api", "purl": "pkg:pypi/jupyterlab@4.2.0a0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.0a0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50349?format=api", "purl": "pkg:pypi/jupyterlab@4.2.0a1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.0a1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50350?format=api", "purl": "pkg:pypi/jupyterlab@4.2.0a2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.0a2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50351?format=api", "purl": "pkg:pypi/jupyterlab@4.2.0b0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.0b0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50352?format=api", "purl": "pkg:pypi/jupyterlab@4.2.0b1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.0b1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50353?format=api", "purl": "pkg:pypi/jupyterlab@4.2.0b2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.0b2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50354?format=api", "purl": "pkg:pypi/jupyterlab@4.2.0b3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.0b3" }, { "url": "http://public2.vulnerablecode.io/api/packages/50355?format=api", "purl": "pkg:pypi/jupyterlab@4.2.0rc0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.0rc0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50356?format=api", "purl": "pkg:pypi/jupyterlab@4.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50357?format=api", "purl": "pkg:pypi/jupyterlab@4.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50358?format=api", "purl": "pkg:pypi/jupyterlab@4.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50359?format=api", "purl": "pkg:pypi/jupyterlab@4.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/50360?format=api", "purl": "pkg:pypi/jupyterlab@4.2.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/50361?format=api", "purl": "pkg:pypi/jupyterlab@4.2.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/50362?format=api", "purl": "pkg:pypi/jupyterlab@4.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/50363?format=api", "purl": "pkg:pypi/jupyterlab@4.2.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.2.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/50364?format=api", "purl": "pkg:pypi/jupyterlab@4.3.0a0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.0a0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50365?format=api", "purl": "pkg:pypi/jupyterlab@4.3.0a1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.0a1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50366?format=api", "purl": "pkg:pypi/jupyterlab@4.3.0a2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.0a2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50367?format=api", "purl": "pkg:pypi/jupyterlab@4.3.0b0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.0b0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50368?format=api", "purl": "pkg:pypi/jupyterlab@4.3.0b1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.0b1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50369?format=api", "purl": "pkg:pypi/jupyterlab@4.3.0b2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.0b2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50370?format=api", "purl": "pkg:pypi/jupyterlab@4.3.0b3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.0b3" }, { "url": "http://public2.vulnerablecode.io/api/packages/50371?format=api", "purl": "pkg:pypi/jupyterlab@4.3.0rc0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.0rc0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50372?format=api", "purl": "pkg:pypi/jupyterlab@4.3.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50373?format=api", "purl": "pkg:pypi/jupyterlab@4.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50374?format=api", "purl": "pkg:pypi/jupyterlab@4.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50375?format=api", "purl": "pkg:pypi/jupyterlab@4.3.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50376?format=api", "purl": "pkg:pypi/jupyterlab@4.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/50377?format=api", "purl": "pkg:pypi/jupyterlab@4.3.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/50378?format=api", "purl": "pkg:pypi/jupyterlab@4.3.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/50379?format=api", "purl": "pkg:pypi/jupyterlab@4.3.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/50380?format=api", "purl": "pkg:pypi/jupyterlab@4.3.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/50381?format=api", "purl": "pkg:pypi/jupyterlab@4.3.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.3.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/50382?format=api", "purl": "pkg:pypi/jupyterlab@4.4.0a0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.0a0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50383?format=api", "purl": "pkg:pypi/jupyterlab@4.4.0a1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.0a1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50384?format=api", "purl": "pkg:pypi/jupyterlab@4.4.0a2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.0a2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50385?format=api", "purl": "pkg:pypi/jupyterlab@4.4.0a3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.0a3" }, { "url": "http://public2.vulnerablecode.io/api/packages/50386?format=api", "purl": "pkg:pypi/jupyterlab@4.4.0b0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.0b0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50387?format=api", "purl": "pkg:pypi/jupyterlab@4.4.0b1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.0b1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50388?format=api", "purl": "pkg:pypi/jupyterlab@4.4.0b2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.0b2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50389?format=api", "purl": "pkg:pypi/jupyterlab@4.4.0rc0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.0rc0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50390?format=api", "purl": "pkg:pypi/jupyterlab@4.4.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50391?format=api", "purl": "pkg:pypi/jupyterlab@4.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50392?format=api", "purl": "pkg:pypi/jupyterlab@4.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50393?format=api", "purl": "pkg:pypi/jupyterlab@4.4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50394?format=api", "purl": "pkg:pypi/jupyterlab@4.4.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/50395?format=api", "purl": "pkg:pypi/jupyterlab@4.4.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/50396?format=api", "purl": "pkg:pypi/jupyterlab@4.4.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/50397?format=api", "purl": "pkg:pypi/jupyterlab@4.4.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/50398?format=api", "purl": "pkg:pypi/jupyterlab@4.4.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/50399?format=api", "purl": "pkg:pypi/jupyterlab@4.4.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/50400?format=api", "purl": "pkg:pypi/jupyterlab@4.4.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/50401?format=api", "purl": "pkg:pypi/jupyterlab@4.4.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.4.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/50402?format=api", "purl": "pkg:pypi/jupyterlab@4.5.0a0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.0a0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50403?format=api", "purl": "pkg:pypi/jupyterlab@4.5.0a1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.0a1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50404?format=api", "purl": "pkg:pypi/jupyterlab@4.5.0a2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.0a2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50405?format=api", "purl": "pkg:pypi/jupyterlab@4.5.0a3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.0a3" }, { "url": "http://public2.vulnerablecode.io/api/packages/50406?format=api", "purl": "pkg:pypi/jupyterlab@4.5.0a4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.0a4" }, { "url": "http://public2.vulnerablecode.io/api/packages/50407?format=api", "purl": "pkg:pypi/jupyterlab@4.5.0b0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.0b0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50408?format=api", "purl": "pkg:pypi/jupyterlab@4.5.0b1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.0b1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50409?format=api", "purl": "pkg:pypi/jupyterlab@4.5.0rc0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.0rc0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50410?format=api", "purl": "pkg:pypi/jupyterlab@4.5.0rc1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.0rc1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50411?format=api", "purl": "pkg:pypi/jupyterlab@4.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/50412?format=api", "purl": "pkg:pypi/jupyterlab@4.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50413?format=api", "purl": "pkg:pypi/jupyterlab@4.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50414?format=api", "purl": "pkg:pypi/jupyterlab@4.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/50415?format=api", "purl": "pkg:pypi/jupyterlab@4.5.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/50416?format=api", "purl": "pkg:pypi/jupyterlab@4.5.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/50417?format=api", "purl": "pkg:pypi/jupyterlab@4.5.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uds2-gzff-jfct" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterlab@4.5.6" } ], "references": [ { "reference_url": "https://github.com/jupyterlab/jupyterlab", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/jupyterlab/jupyterlab" }, { "reference_url": "https://github.com/jupyterlab/jupyterlab/releases/tag/v4.5.7", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/jupyterlab/jupyterlab/releases/tag/v4.5.7" }, { "reference_url": "https://github.com/jupyterlab/jupyterlab/security/advisories/GHSA-37w4-hwhx-4rc4", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/jupyterlab/jupyterlab/security/advisories/GHSA-37w4-hwhx-4rc4" }, { "reference_url": "https://jupyterhub.readthedocs.io/en/5.2.1/explanation/websecurity.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://jupyterhub.readthedocs.io/en/5.2.1/explanation/websecurity.html" }, { "reference_url": "https://jupyterlab.readthedocs.io/en/latest/user/extensions.html#extension-manager-implementations", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://jupyterlab.readthedocs.io/en/latest/user/extensions.html#extension-manager-implementations" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42266", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42266" } ], "weaknesses": [ { "cwe_id": 20, "name": "Improper Input Validation", "description": "The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly." }, { "cwe_id": 602, "name": "Client-Side Enforcement of Server-Side Security", "description": "The product is composed of a server that relies on the client to implement a mechanism that is intended to protect the server." }, { "cwe_id": 88, "name": "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')", "description": "The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string." } ], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uds2-gzff-jfct" }