CVE-2015-5607

NONE EPSS 64.4%
Published Sep 20, 20178y ago ยท Modified Jun 17, 20262w ago
Find Similar
Published Sep 20, 2017 8y ago
Last Modified Jun 17, 2026 2w ago

Description

Cross-site request forgery in the REST API in IPython 2 and 3.

Threat Intelligence

EPSS Exploit Probability
64.4% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-352 Cross-Site Request Forgery (CSRF) Authentication

Affected Products 15

VendorProductVersionRange
ipythonipython2.0.0any
ipythonipython2.1.0any
ipythonipython2.2.0any
ipythonipython2.3.0any
ipythonipython2.3.1any
ipythonipython2.4.0any
ipythonipython2.4.1any
ipythonipython3.0.0any
ipythonipython3.1.0any
ipythonipython3.2.0any
ipythonipython3.2.1any
ipythonipython3.2.2any
ipythonipython3.2.3any
fedoraprojectfedora21any
fedoraprojectfedora22any

References 6

  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162671.html
    Issue TrackingThird Party Advisory
  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162936.html
    Issue TrackingThird Party Advisory
  • openwall.com http://www.openwall.com/lists/oss-security/2015/07/21/3
    ExploitMailing ListPatchThird Party Advisory
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1243842
    Issue TrackingPatch
  • github.com https://github.com/ipython/ipython/commit/1415a9710407e7c14900531813c15ba6165f0816
    PatchThird Party Advisory
  • github.com https://github.com/ipython/ipython/commit/a05fe052a18810e92d9be8c1185952c13fe4e5b0
    PatchThird Party Advisory

Remediation

  • openwall.com http://www.openwall.com/lists/oss-security/2015/07/21/3
    ExploitMailing ListPatchThird Party Advisory
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1243842
    Issue TrackingPatch
  • github.com https://github.com/ipython/ipython/commit/1415a9710407e7c14900531813c15ba6165f0816
    PatchThird Party Advisory
  • github.com https://github.com/ipython/ipython/commit/a05fe052a18810e92d9be8c1185952c13fe4e5b0
    PatchThird Party Advisory