CVE-2015-5607
NONE EPSS 64.4%
Published Sep 20, 20178y ago ยท Modified Jun 17, 20262w ago
Published Sep 20, 2017 8y ago
Last Modified Jun 17, 2026 2w ago
Description
Cross-site request forgery in the REST API in IPython 2 and 3.
Threat Intelligence
EPSS Exploit Probability
64.4% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available
Weaknesses 1
CWE-352 Cross-Site Request Forgery (CSRF) Authentication
Affected Products 15
| Vendor | Product | Version | Range |
|---|---|---|---|
| ipython | ipython | 2.0.0 | any |
| ipython | ipython | 2.1.0 | any |
| ipython | ipython | 2.2.0 | any |
| ipython | ipython | 2.3.0 | any |
| ipython | ipython | 2.3.1 | any |
| ipython | ipython | 2.4.0 | any |
| ipython | ipython | 2.4.1 | any |
| ipython | ipython | 3.0.0 | any |
| ipython | ipython | 3.1.0 | any |
| ipython | ipython | 3.2.0 | any |
| ipython | ipython | 3.2.1 | any |
| ipython | ipython | 3.2.2 | any |
| ipython | ipython | 3.2.3 | any |
| fedoraproject | fedora | 21 | any |
| fedoraproject | fedora | 22 | any |
References 6
- lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162671.html
- lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162936.html
- openwall.com http://www.openwall.com/lists/oss-security/2015/07/21/3
- bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1243842
- github.com https://github.com/ipython/ipython/commit/1415a9710407e7c14900531813c15ba6165f0816
- github.com https://github.com/ipython/ipython/commit/a05fe052a18810e92d9be8c1185952c13fe4e5b0
Remediation
- openwall.com http://www.openwall.com/lists/oss-security/2015/07/21/3
- bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1243842
- github.com https://github.com/ipython/ipython/commit/1415a9710407e7c14900531813c15ba6165f0816
- github.com https://github.com/ipython/ipython/commit/a05fe052a18810e92d9be8c1185952c13fe4e5b0