CVE-2015-7337 Medium Severity Vulnerability detected by WhiteSource #715

mend-bolt-for-github · 2019-02-05T02:20:34Z

CVE-2015-7337 - Medium Severity Vulnerability

Vulnerable Library - ipython-0.13.1.tar.gz

IPython: Productive Interactive Computing

path: /notejam/flask/requirements.txt

Library home page: https://pypi.python.org/packages/8d/0f/dfc2ec9f09d5612176ad900f3b0b71bf71ff91f78f3b4c9566f2eb7d013c/ipython-0.13.1.tar.gz

Dependency Hierarchy:

❌ ipython-0.13.1.tar.gz (Vulnerable Library)

Vulnerability Details

The editor in IPython Notebook before 3.2.2 and Jupyter Notebook 4.0.x before 4.0.5 allows remote attackers to execute arbitrary JavaScript code via a crafted file, which triggers a redirect to files/, related to MIME types.

Publish Date: 2015-09-29

URL: CVE-2015-7337

CVSS 2 Score Details (6.8)

Base Score Metrics not available

Suggested Fix

Type: Upgrade version

Origin: https://security.gentoo.org/glsa/201512-02

Release Date: 2015-12-17

Fix Resolution: All IPython users should upgrade to the latest version >= ipython-3.2.1-r1

Step up your Open Source Security Game with WhiteSource here

mend-bolt-for-github bot added the security vulnerability Security vulnerability detected by WhiteSource label Feb 5, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE-2015-7337 Medium Severity Vulnerability detected by WhiteSource #715

CVE-2015-7337 Medium Severity Vulnerability detected by WhiteSource #715

mend-bolt-for-github bot commented Feb 5, 2019

CVE-2015-7337 Medium Severity Vulnerability detected by WhiteSource #715

CVE-2015-7337 Medium Severity Vulnerability detected by WhiteSource #715

Comments

mend-bolt-for-github bot commented Feb 5, 2019

CVE-2015-7337 - Medium Severity Vulnerability