CGA-qg8h-v4m4-vvgx

Published

Last updated

https://images.chainguard.dev/security/CGA-qg8h-v4m4-vvgx

Package

kubeflow-jupyter-web-app

RepositoryWolfi

Latest Update

Fixed

Fixed Version

1.9.1-r0

Aliases

Severity

7.5

High

CVSS CVSS_V3

References

Updates

Status

Fixed

Fixed version

1.9.1-r0

Status

Pending upstream fix

Impact

The version of flask-cors affected in this CVE (4.0.1) is the most current release, there is a PR open addressing this vulnerability in the flask-cors repo where the fix will be implemented in the next major version release (5.0.0) PR:https://github.com/corydolphin/flask-cors/pull/363

Status

Under investigation

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Private Policy

Product

Chainguard Containers Chainguard Libraries Chainguard VMs Integrations Pricing

Solutions

FedRAMP PCI DSS Golden Images CVE Remediation Public Sector

Customers

Customer Stories Chainguard Reviews

Resources

Events & Webinars Chainguard Courses Documentation Trust Center

Company

About Us Blog Partners Newsroom Careers Legal