CVE-2021-32797: JupyterLab: XSS due to lack of sanitization of the action attribute of an html <form>
First published: Mon Aug 09 2021(Updated: )
### Impact Untrusted notebook can execute code on load. This is a remote code execution, but requires user action to open a notebook. ### Patches Patched in the following versions: 3.1.4, 3.0.17, 2.3.2, 2.2.10, 1.2.21. ### References [OWASP Page on Restricting Form Submissions](https://cheatsheetseries.owasp.org/cheatsheets/Content_Security_Policy_Cheat_Sheet.html) ### For more information If you have any questions or comments about this advisory, or vulnerabilities to report, please email our security list security@ipython.org. Credit: Guillaume Jeanne from Google
Credit: security-advisories@github.com security-advisories@github.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Jupyter Jupyterlab | <1.2.21 | |
| Jupyter Jupyterlab | >=2.0.0<2.2.10 | |
| Jupyter Jupyterlab | >=2.3.0<2.3.2 | |
| Jupyter Jupyterlab | >=3.0.0<3.0.17 | |
| Jupyter Jupyterlab | >=3.1.0<3.1.4 | |
| pip/jupyterlab | >=3.1.0a0<3.1.4 | 3.1.4 |
| pip/jupyterlab | >=3.0.0a0<3.0.17 | 3.0.17 |
| pip/jupyterlab | >=2.3.0a0<2.3.2 | 2.3.2 |
| pip/jupyterlab | >=2.0.0a0<2.2.10 | 2.2.10 |
| pip/notebook | >=6.0.0<6.4.1 | 6.4.1 |
| pip/notebook | <5.7.11 | 5.7.11 |
| pip/jupyterlab | <1.2.21 | 1.2.21 |
| <1.2.21 | ||
| >=2.0.0<2.2.10 | ||
| >=2.3.0<2.3.2 | ||
| >=3.0.0<3.0.17 | ||
| >=3.1.0<3.1.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://github.com/jupyterlab/jupyterlab/commit/504825938c0abfa2fb8ff8d529308830a5ae42ed
- https://github.com/jupyterlab/jupyterlab/security/advisories/GHSA-4952-p58q-6crx
- https://nvd.nist.gov/vuln/detail/CVE-2021-32797
- https://github.com/google/security-research/security/advisories/GHSA-c469-p3jp-2vhx
- https://github.com/pypa/advisory-database/tree/main/vulns/jupyterlab/PYSEC-2021-130.yaml
- https://github.com/advisories/GHSA-4952-p58q-6crx (Advisory)
Frequently Asked Questions
What is CVE-2021-32797?
CVE-2021-32797 is a vulnerability in JupyterLab that allows untrusted notebooks to execute code on load.
How does CVE-2021-32797 affect JupyterLab?
CVE-2021-32797 affects JupyterLab versions up to 1.2.21, 2.0.0 to 2.2.10, 2.3.0 to 2.3.2, 3.0.0 to 3.0.17, and 3.1.0 to 3.1.4.
What is the severity of CVE-2021-32797?
CVE-2021-32797 has a severity rating of 9.6, which is classified as critical.
How can the CVE-2021-32797 vulnerability be exploited?
The CVE-2021-32797 vulnerability can be exploited by using an untrusted notebook to trigger the execution of code on load in JupyterLab.
What is the Common Weakness Enumeration (CWE) ID for CVE-2021-32797?
The Common Weakness Enumeration (CWE) ID for CVE-2021-32797 is CWE-79.
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/severity
- agent/first-publish-date
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-4952-p58q-6crx
- alias/CVE-2021-32797
- agent/software-canonical-lookup
- agent/weakness
- agent/last-modified-date
- agent/references
- agent/description
- agent/author
- agent/softwarecombine
- agent/event
- collector/nvd-cve
- source/NVD
- collector/github-advisory
- agent/tags
- agent/trending
- vendor/jupyter
- canonical/jupyter jupyterlab
- version/jupyter jupyterlab/2.0.0
- version/jupyter jupyterlab/2.3.0
- version/jupyter jupyterlab/3.0.0
- version/jupyter jupyterlab/3.1.0
- package-manager/pip