CVE-2014-3429 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2014-3429 Interim 1 6 2023-12-08T02:26:49Z current 2021-05-30T13:20:48Z 2023-12-08T02:26:49Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2014-3429 IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page. CVE-2014-3429 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P