CVE-2023-25574 | jupyterhub ltiauthenticator 1.3.0 LTI13Authenticator signature verification

Posted by Angelo Barbosa | Feb 25, 2025 | CVE

A vulnerability has been found in jupyterhub ltiauthenticator 1.3.0 and classified as very critical. This vulnerability affects the function LTI13Authenticator. The manipulation leads to improper verification of cryptographic signature.

This vulnerability was named CVE-2023-25574. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-25574 | jupyterhub ltiauthenticator 1.3.0 LTI13Authenticator signature verification

Related Posts

CVE-2024-28447 | Shenzhen Libituo Technology LBT-T300-mini1 1.2.9 /apply.cgi lan_ipaddr buffer overflow

CVE-2024-6910 | EventON Plugin up to 2.2.16 on WordPress Setting cross site scripting

CVE-2024-24442 | OpenAirInterface CN5G AMF up to 2.0.0 NGAP Message ngap_app::handle_receive null pointer dereference

CVE-2023-6830 | Formidable Forms Plugin up to 6.7 on WordPress cross site scripting