Jupyter Oauthenticator — known CVE vulnerabilities
Every CVE whose affected-product data names Jupyter Oauthenticator, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2018-7206 — CVSS 8.8 (high): An issue was discovered in Project Jupyter JupyterHub OAuthenticator 0.6.x before 0.6.2 and 0.7.x before 0.7.3. When using JupyterHub with…
CVE-2026-33175 — CVSS 8.8 (high): OAuthenticator is software that allows OAuth2 identity providers to be plugged in and used with JupyterHub. Prior to version 17.4.0, an…
CVE-2024-29033 — CVSS 7.5 (high): OAuthenticator provides plugins for JupyterHub to use common OAuth providers, as well as base classes for writing one's own Authenticators…
CVE-2020-26250 — CVSS 6.3 (medium): OAuthenticator is an OAuth login mechanism for JupyterHub. In oauthenticator from version 0.12.0 and before 0.12.2, the deprecated (in…
CVE-2022-31027 — CVSS 4.2 (medium): OAuthenticator is an OAuth token library for the JupyerHub login handler. CILogonOAuthenticator is provided by the OAuthenticator package…