CVE-2018-1999024 log

Source
Severity Medium
Remote No
Type Cross-site scripting
Description
A security issue has been found in MathJax versions prior to version 2.7.4, which contain a Cross Site Scripting (XSS) vulnerability in the \unicode{} macro that can result in potentially untrusted Javascript running within a web browser, for example at notebook load.
Group Package Affected Fixed Severity Status Ticket
AVG-822 mathjax 2.7.3-1 2.7.4-1 Medium Fixed
References
https://blog.jupyter.org/security-fix-for-jupyter-notebook-450f272b6932