---

CVE-2018-1999024 - log back

CVE-2018-1999024 created at 25 Sep 2019 19:31:40
Severity	+ Medium
Remote	+ Local
Type	+ Cross-site scripting
Description	+ A security issue has been found in MathJax versions prior to version 2.7.4, which contain a Cross Site Scripting (XSS) vulnerability in the \unicode{} macro that can result in potentially untrusted Javascript running within a web browser, for example at notebook load.
References	+ https://blog.jupyter.org/security-fix-for-jupyter-notebook-450f272b6932
Notes