Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-g6zf-6yqx-r7gx
Summary
Cross site scripting (XSS) in JupyterHub via Self-XSS leveraged by Cookie Tossing
Affected configurations:

- Single-origin JupyterHub deployments
- JupyterHub deployments with user-controlled applications running on subdomains or peer subdomains of either the Hub or a single-user server.

By tricking a user into visiting a malicious subdomain, the attacker can achieve an XSS directly affecting the former's session. More precisely, in the context of JupyterHub, this XSS could achieve the following:

- Full access to JupyterHub API and user's single-user server, e.g.
- Create and exfiltrate an API Token
- Exfiltrate all files hosted on the user's single-user server: notebooks, images, etc.
- Install malicious extensions. They can be used as a backdoor to silently regain access to victim's session anytime.
Aliases
0
alias CVE-2024-28233
1
alias GHSA-7r3h-4ph8-w38g
Fixed_packages
0
url pkg:deb/debian/jupyterhub@5.2.1%2Bds1-4
purl pkg:deb/debian/jupyterhub@5.2.1%2Bds1-4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jupyterhub@5.2.1%252Bds1-4
1
url pkg:deb/debian/jupyterhub@5.0.0%2Bds1-1?distro=trixie
purl pkg:deb/debian/jupyterhub@5.0.0%2Bds1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jupyterhub@5.0.0%252Bds1-1%3Fdistro=trixie
2
url pkg:deb/debian/jupyterhub@5.2.1%2Bds1-4?distro=trixie
purl pkg:deb/debian/jupyterhub@5.2.1%2Bds1-4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jupyterhub@5.2.1%252Bds1-4%3Fdistro=trixie
3
url pkg:deb/debian/jupyterhub@5.2.1%2Bds1-5?distro=trixie
purl pkg:deb/debian/jupyterhub@5.2.1%2Bds1-5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jupyterhub@5.2.1%252Bds1-5%3Fdistro=trixie
4
url pkg:pypi/jupyterhub@4.1.0
purl pkg:pypi/jupyterhub@4.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-jruk-8qvr-d3hh
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/jupyterhub@4.1.0
Affected_packages
0
url pkg:deb/debian/jupyterhub@3.0.0%2Bds1-1
purl pkg:deb/debian/jupyterhub@3.0.0%2Bds1-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-g6zf-6yqx-r7gx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jupyterhub@3.0.0%252Bds1-1
1
url pkg:deb/debian/jupyterhub@3.0.0%2Bds1-1?distro=trixie
purl pkg:deb/debian/jupyterhub@3.0.0%2Bds1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-g6zf-6yqx-r7gx
1
vulnerability VCID-jruk-8qvr-d3hh
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jupyterhub@3.0.0%252Bds1-1%3Fdistro=trixie
References
0
reference_url https://github.com/jupyterhub/jupyterhub
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/jupyterhub/jupyterhub
1
reference_url https://github.com/jupyterhub/jupyterhub/commit/e2798a088f5ad45340fe79cdf1386198e664f77f
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/jupyterhub/jupyterhub/commit/e2798a088f5ad45340fe79cdf1386198e664f77f
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070388
reference_id 1070388
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070388
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-28233
reference_id CVE-2024-28233
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-28233
4
reference_url https://github.com/advisories/GHSA-7r3h-4ph8-w38g
reference_id GHSA-7r3h-4ph8-w38g
reference_type
scores
url https://github.com/advisories/GHSA-7r3h-4ph8-w38g
5
reference_url https://github.com/jupyterhub/jupyterhub/security/advisories/GHSA-7r3h-4ph8-w38g
reference_id GHSA-7r3h-4ph8-w38g
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/jupyterhub/jupyterhub/security/advisories/GHSA-7r3h-4ph8-w38g
Weaknesses
0
cwe_id 352
name Cross-Site Request Forgery (CSRF)
description The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.
1
cwe_id 565
name Reliance on Cookies without Validation and Integrity Checking
description The product relies on the existence or values of cookies when performing security-critical operations, but it does not properly ensure that the setting is valid for the associated user.
2
cwe_id 79
name Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
description The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
3
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
4
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score7.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-g6zf-6yqx-r7gx