VYPR
Medium severity5.3OSV Advisory· Published May 23, 2024· Updated Jun 17, 2026

CVE-2024-28188

CVE-2024-28188

Description

Jupyter Scheduler is collection of extensions for programming jobs to run now or run on a schedule. The list of conda environments of jupyter-scheduler users maybe be exposed, potentially revealing information about projects that a specific user may be working on. This vulnerability has been patched in version(s) 1.1.6, 1.2.1, 1.8.2 and 2.5.2.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
jupyter-schedulerPyPI
>= 1.0.0, < 1.1.61.1.6
jupyter-schedulerPyPI
>= 1.2.0, < 1.2.11.2.1
jupyter-schedulerPyPI
>= 1.3.0, < 1.8.21.8.2
jupyter-schedulerPyPI
>= 2.0.0, < 2.5.22.5.2

Affected products

2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.