[Git][security-tracker-team/security-tracker][master] Add CVE-2026-5422/jupyter-server
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jun 3 08:08:16 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
52c62767 by Salvatore Bonaccorso at 2026-06-03T09:07:52+02:00
Add CVE-2026-5422/jupyter-server
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -71,7 +71,8 @@ CVE-2026-7198 (CWE-284: Improper Access Control in web services in Progress Site
CVE-2026-7195 (CWE-20: Improper Input Validation in web services in Progress Sitefini ...)
NOT-FOR-US: Progress Software
CVE-2026-5422 (A path traversal vulnerability exists in jupyter-server version 2.17.0 ...)
- TODO: check
+ - jupyter-server <unfixed>
+ NOTE: https://huntr.com/bounties/24a36953-6490-466f-8cb2-a90d1ca56e0f
CVE-2026-5191 (The Tiled Gallery Carousel Without JetPack plugin for WordPress is vul ...)
NOT-FOR-US: WordPress plugin
CVE-2026-4081 (The ZeM STL plugin for WordPress is vulnerable to Stored Cross-Site Sc ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/52c62767e0921d63abc2a5d033e34b9d98cad8f9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/52c62767e0921d63abc2a5d033e34b9d98cad8f9
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260603/7f6f5b8b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list