PT-2024-26358 · Unknown · Jupyter Server

Nvn1729

Published

2024-06-06

Updated

2024-11-01

CVE-2024-35178

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Jupyter Server versions prior to 2.14.1

Description The Jupyter Server on Windows has a vulnerability that lets unauthenticated attackers leak the NTLMv2 password hash of the Windows user running the Jupyter server. An attacker can crack this password to gain access to the Windows machine hosting the Jupyter server, or access other network-accessible machines or 3rd party services using that credential. Alternatively, an attacker can perform an NTLM relay attack without cracking the credential to gain access to other network-accessible machines.

Recommendations For versions prior to 2.14.1, update to version 2.14.1 to resolve the issue. As a temporary workaround, consider restricting access to the Jupyter server to minimize the risk of exploitation.

Exploit

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2024-35178

GHSA-HRW6-WG82-CM62

OESA-2024-2308

PYSEC-2024-165

Affected Products

Jupyter Server

PT-2024-26358 · Unknown · Jupyter Server

CVE-2024-35178

Weakness Enumeration

Related Identifiers

Affected Products

References · 20