Known Vulnerabilities for Jupyter Server by Jupyter
Listed below are 10 of the newest known vulnerabilities associated with "Jupyter Server" by "Jupyter".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-40934 json | Jupyter Server is the backend for Jupyter web applications. In versions 2.17.0 and earlier, the secret used to sign authentic... | Not Provided | 2026-05-05 | 2026-05-07 |
| CVE-2026-40864 json | JupyterHub is software that allows users to create a multi-user server for Jupyter notebooks. In versions 4.1.0 through 5.4.4... | Not Provided | 2026-05-22 | 2026-05-26 |
| CVE-2026-40110 json | Jupyter Server is the backend for Jupyter web applications. In versions 2.17.0 and earlier, the Origin header validation uses... | Not Provided | 2026-05-05 | 2026-05-07 |
| CVE-2026-35397 json | Jupyter Server is the backend for Jupyter web applications. In versions 2.17.0 and earlier, a path traversal vulnerability in... | Not Provided | 2026-05-05 | 2026-05-08 |
| CVE-2026-33709 json | JupyterHub is software that allows one to create a multi-user server for Jupyter notebooks. Prior to version 5.4.4, an open r... | Not Provided | 2026-04-03 | 2026-04-06 |
| CVE-2026-6657 json | A vulnerability in jupyter-server versions 1.12.0 through 2.17.0 allows an attacker to bypass CORS origin validation when the... | Not Provided | 2026-06-03 | 2026-06-03 |
| CVE-2026-5422 json | A path traversal vulnerability exists in jupyter-server version 2.17.0 due to an incorrect root directory boundary check in t... | Not Provided | 2026-06-02 | 2026-06-02 |
| CVE-2025-61669 json | Jupyter Server is the backend for Jupyter web applications. In jupyter_server versions through 2.17.0, the next query paramet... | Not Provided | 2026-05-05 | 2026-05-05 |
| CVE-2023-49080 json | 4.3 - MEDIUM | 2023-12-04 | 2023-12-07 | |
| CVE-2023-40170 json | jupyter-server is the backend for Jupyter web applications. Improper cross-site credential checks on `/files/` URLs could all... | 6.1 - MEDIUM | 2023-08-28 | 2023-09-15 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Jupyter | Jupyter Server | 6.0.3 | |||
| Application | Jupyter | Jupyter Server | 6.0.2 | |||
| Application | Jupyter | Jupyter Server | 6.0.1 | |||
| Application | Jupyter | Jupyter Server | 6.0.0 | |||
| Application | Jupyter | Jupyter Server | 6.0.0 | |||
| Application | Jupyter | Jupyter Server | 5.7.8 | |||
| Application | Jupyter | Jupyter Server | 5.7.7 | |||
| Application | Jupyter | Jupyter Server | 5.7.6 | |||
| Application | Jupyter | Jupyter Server | 5.7.5 | |||
| Application | Jupyter | Jupyter Server | 5.7.4 | |||
| Application | Jupyter | Jupyter Server | 5.7.3 | |||
| Application | Jupyter | Jupyter Server | 5.7.2 | |||
| Application | Jupyter | Jupyter Server | 5.7.1 | |||
| Application | Jupyter | Jupyter Server | 5.7.0 | |||
| Application | Jupyter | Jupyter Server | 5.6.0 | |||
| Application | Jupyter | Jupyter Server | 5.6.0 | |||
| Application | Jupyter | Jupyter Server | 5.5.0 | |||
| Application | Jupyter | Jupyter Server | 5.5.0 | |||
| Application | Jupyter | Jupyter Server | 5.4.1 | |||
| Application | Jupyter | Jupyter Server | 5.4.0 |