Known Vulnerabilities for products from Jupyter
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Jupyter".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-49384 json | Not Provided | 2026-05-29 | 2026-05-29 | |
| CVE-2026-45672 json | Not Provided | 2026-05-15 | 2026-05-19 | |
| CVE-2026-42557 json | jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architectur... | Not Provided | 2026-05-13 | 2026-06-02 |
| CVE-2026-42266 json | JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architectur... | Not Provided | 2026-05-13 | 2026-05-26 |
| CVE-2026-40934 json | Jupyter Server is the backend for Jupyter web applications. In versions 2.17.0 and earlier, the secret used to sign authentic... | Not Provided | 2026-05-05 | 2026-05-11 |
| CVE-2026-40864 json | JupyterHub is software that allows users to create a multi-user server for Jupyter notebooks. In versions 4.1.0 through 5.4.4... | Not Provided | 2026-05-22 | 2026-06-01 |
| CVE-2026-40171 json | Not Provided | 2026-05-06 | 2026-05-07 | |
| CVE-2026-40110 json | Not Provided | 2026-05-05 | 2026-05-07 | |
| CVE-2026-39378 json | Not Provided | 2026-04-21 | 2026-04-21 | |
| CVE-2026-39377 json | The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions 6.5 ... | Not Provided | 2026-04-21 | 2026-04-23 |
| CVE-2026-35397 json | Jupyter Server is the backend for Jupyter web applications. In versions 2.17.0 and earlier, a path traversal vulnerability in... | Not Provided | 2026-05-05 | 2026-05-08 |
| CVE-2026-34052 json | LTI JupyterHub Authenticator is a JupyterHub authenticator for LTI. Prior to version 1.6.3, the LTI 1.1 validator stores OAut... | Not Provided | 2026-04-03 | 2026-04-13 |
| CVE-2026-33709 json | JupyterHub is software that allows one to create a multi-user server for Jupyter notebooks. Prior to version 5.4.4, an open r... | Not Provided | 2026-04-03 | 2026-04-22 |
| CVE-2026-33175 json | OAuthenticator is software that allows OAuth2 identity providers to be plugged in and used with JupyterHub. Prior to version ... | Not Provided | 2026-04-03 | 2026-04-15 |
| CVE-2026-5422 json | A path traversal vulnerability exists in jupyter-server version 2.17.0 due to an incorrect root directory boundary check in t... | Not Provided | 2026-06-02 | 2026-06-03 |
| CVE-2025-61669 json | Jupyter Server is the backend for Jupyter web applications. In jupyter_server versions through 2.17.0, the next query paramet... | Not Provided | 2026-05-05 | 2026-05-11 |
| CVE-2024-22421 json | 6.5 - MEDIUM | 2024-01-19 | 2024-02-02 | |
| CVE-2024-22420 json | 6.1 - MEDIUM | 2024-01-19 | 2024-02-02 | |
| CVE-2024-22415 json | 9.8 - CRITICAL | 2024-01-18 | 2024-01-30 | |
| CVE-2023-49080 json | 4.3 - MEDIUM | 2023-12-04 | 2023-12-07 |
Known software with vulnerabilities from Jupyter
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Jupyter | Jupyterhub | 0.1.0 |
| Application | Jupyter | Jupyter Server | 0.0.1 |
| Application | Jupyter | Notebook | 4.0.0 |
| Application | Jupyter | Oauthenticator | 0.1.0 |