High severity8.8NVD Advisory· Published Sep 20, 2017· Updated Jun 17, 2026
CVE-2015-5607
CVE-2015-5607
Description
Cross-site request forgery in the REST API in IPython 2 and 3.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
ipythonPyPI | >= 0.12, < 2.4.1 | 2.4.1 |
ipythonPyPI | >= 3.0.0, < 3.2.3 | 3.2.3 |
Affected products
16cpe:2.3:a:ipython:ipython:2.0.0:*:*:*:*:*:*:*+ 12 more
- cpe:2.3:a:ipython:ipython:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ipython:ipython:2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ipython:ipython:2.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:ipython:ipython:2.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:ipython:ipython:2.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ipython:ipython:2.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:ipython:ipython:2.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:ipython:ipython:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ipython:ipython:3.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ipython:ipython:3.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:ipython:ipython:3.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ipython:ipython:3.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:ipython:ipython:3.2.3:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
9- bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchWEB
- github.com/ipython/ipython/commit/1415a9710407e7c14900531813c15ba6165f0816nvdPatchThird Party AdvisoryWEB
- github.com/ipython/ipython/commit/a05fe052a18810e92d9be8c1185952c13fe4e5b0nvdPatchThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2015/07/21/3nvdExploitMailing ListPatchThird Party AdvisoryWEB
- lists.fedoraproject.org/pipermail/package-announce/2015-July/162671.htmlnvdIssue TrackingThird Party AdvisoryWEB
- lists.fedoraproject.org/pipermail/package-announce/2015-July/162936.htmlnvdIssue TrackingThird Party AdvisoryWEB
- github.com/advisories/GHSA-7fc2-rm35-2pp7ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2015-5607ghsaADVISORY
- github.com/pypa/advisory-database/tree/main/vulns/ipython/PYSEC-2017-47.yamlghsaWEB
News mentions
0No linked articles in our index yet.