CVE-2019-10255 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2019-10255 Interim 1 7 2025-02-17T02:08:53Z current 2021-05-30T14:26:52Z 2025-02-17T02:08:53Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2019-10255 An Open Redirect vulnerability for all browsers in Jupyter Notebook before 5.7.7 and some browsers (Chrome, Firefox) in JupyterHub before 0.9.5 allows crafted links to the login page, which will redirect to a malicious site after successful login. Servers running on a base_url prefix are not affected. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Tumbleweed jupyter-notebook-6.2.0-1.4 jupyter-notebook-lang-6.2.0-1.4 jupyter-notebook-latex-6.2.0-1.4 python36-notebook-6.2.0-1.4 python36-notebook-lang-6.2.0-1.4 python38-notebook-6.2.0-1.4 python38-notebook-lang-6.2.0-1.4 python39-notebook-6.2.0-1.4 python39-notebook-lang-6.2.0-1.4 jupyter-notebook-6.2.0-1.4 as a component of openSUSE Tumbleweed jupyter-notebook-lang-6.2.0-1.4 as a component of openSUSE Tumbleweed jupyter-notebook-latex-6.2.0-1.4 as a component of openSUSE Tumbleweed python36-notebook-6.2.0-1.4 as a component of openSUSE Tumbleweed python36-notebook-lang-6.2.0-1.4 as a component of openSUSE Tumbleweed python38-notebook-6.2.0-1.4 as a component of openSUSE Tumbleweed python38-notebook-lang-6.2.0-1.4 as a component of openSUSE Tumbleweed python39-notebook-6.2.0-1.4 as a component of openSUSE Tumbleweed python39-notebook-lang-6.2.0-1.4 as a component of openSUSE Tumbleweed An Open Redirect vulnerability for all browsers in Jupyter Notebook before 5.7.7 and some browsers (Chrome, Firefox) in JupyterHub before 0.9.5 allows crafted links to the login page, which will redirect to a malicious site after successful login. Servers running on a base_url prefix are not affected. CVE-2019-10255 openSUSE Tumbleweed:jupyter-notebook-6.2.0-1.4 openSUSE Tumbleweed:jupyter-notebook-lang-6.2.0-1.4 openSUSE Tumbleweed:jupyter-notebook-latex-6.2.0-1.4 openSUSE Tumbleweed:python36-notebook-6.2.0-1.4 openSUSE Tumbleweed:python36-notebook-lang-6.2.0-1.4 openSUSE Tumbleweed:python38-notebook-6.2.0-1.4 openSUSE Tumbleweed:python38-notebook-lang-6.2.0-1.4 openSUSE Tumbleweed:python39-notebook-6.2.0-1.4 openSUSE Tumbleweed:python39-notebook-lang-6.2.0-1.4 important 5.8 AV:N/AC:M/Au:N/C:P/I:P/A:N 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N