CVE-2020-15110

In jupyterhub-kubespawner before 0.12, certain usernames will be able to craft particular server names which will grant them access to the default server of other users who have matching usernames. This has been fixed in 0.12.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:jupyterhub:kubespawner:*:*:*:*:*:*:*:*

Information

Published : 2020-07-17 14:15

Updated : 2021-11-18 10:23


NVD link : CVE-2020-15110

Mitre link : CVE-2020-15110


JSON object : View

CWE
CWE-863

Incorrect Authorization

Advertisement

dedicated server usa

Products Affected

jupyterhub

  • kubespawner