GHSA-4m77-cmpx-vjc4 — medium GitHub Advisory (CVE-2024-22420) in pip/jupyterlab

Description

The vulnerability depends on user interaction by opening a malicious notebook with Markdown cells, or Markdown file using JupyterLab preview feature.

A malicious user can access any data that the attacked user has access to as well as perform arbitrary requests acting as the attacked user.

JupyterLab v4.0.11 was patched.

Users can either disable the table of contents extension by running:

jupyter labextension disable @jupyterlab/toc-extension:registry

Score	Percentile
0.34%	56.99%

Base score	Version	Severity	Vector
6.5	3.1	—	`CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N` Click to expand Attack vector (AV:N) Could be attacked over the internet or any normal routed network—not just someone sitting at the machine. Attack complexity (AC:L) Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup. Privileges required (PR:N) No account or special rights needed—anonymous or random user is enough. User interaction (UI:R) A real person has to do something—click, install, enable—otherwise it doesn’t land. Scope (S:U) Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems. Confidentiality (C:H) Serious risk that confidential data gets exposed in a big way. Integrity (I:N) Data isn’t meaningfully altered or forged. Availability (A:N) Service keeps running; no real outage angle.

Type	Value
GHSA	GHSA-4m77-cmpx-vjc4 ↗
CVE	CVE-2024-22420 ↗

CWE id	Name
CWE-79	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Vulnerable version ranges and first patched releases as published by GitHub.

Ecosystem	Package	Vulnerable range	First patched	Vulnerable functions
pip	jupyterlab	>= 4.0.0, <= 4.0.10	4.0.11	—
pip	notebook	>= 7.0.0, <= 7.0.6	7.0.7	—