RSS   Vulnerabilities for 'Kubespawner'   RSS

2020-07-17
 
CVE-2020-15110

CWE-863
 

 
In jupyterhub-kubespawner before 0.12, certain usernames will be able to craft particular server names which will grant them access to the default server of other users who have matching usernames. This has been fixed in 0.12.

 

 >>> Vendor: Jupyterhub 4 Products
Kubespawner
Systemdspawner
Nbgitpuller
First use authenticator


Copyright 2024, cxsecurity.com

 

Back to Top