Cyber Resilience

CVE-2026-42557

HighUpdated

Published: 13 May 2026

Published
13 May 2026
Modified
30 June 2026
KEV Added
Patch
CVSS Score v4 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0039 30.6th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2026-42557 is a high-severity Cross-site Scripting (CWE-79) vulnerability in Jupyter Jupyterlab. Its CVSS base score is 8.6 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Malicious File (T1204.002); ranked at the 30.6th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. Prior to 4.5.7, JupyterLab's HTML sanitizer allowlists data-commandlinker-command and data-commandlinker-args on button elements, while CommandLinker listens for all click events on document.body and executes…

more

the named command without checking whether the element came from trusted JupyterLab UI. A notebook with a pre-saved HTML cell output containing a deceptive button can trigger arbitrary JupyterLab commands - including arbitrary code execution - on a single user click, without any code being submitted for execution by the user. This vulnerability is fixed in 4.5.7.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1204.002 Malicious File Execution
An adversary may rely upon a user opening a malicious file in order to gain execution.
T1059 Command and Scripting Interpreter Execution
Adversaries may abuse command and script interpreters to execute commands, scripts, or binaries.
Why these techniques?

XSS in notebook HTML output enables command execution (incl. code) on user click of malicious button, directly mapping to user execution of malicious file and command interpreters.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-42266Same product: Jupyter Jupyterlab
CVE-2026-33175Same vendor: Jupyter
CVE-2026-5422Same vendor: Jupyter
CVE-2026-5429Shared CWE-79
CVE-2023-25574Same vendor: Jupyter
CVE-2021-47840Shared CWE-79
CVE-2026-0533Shared CWE-79
CVE-2026-0534Shared CWE-79
CVE-2026-25789Shared CWE-79
CVE-2021-47838Shared CWE-79

Affected Assets

jupyter
jupyterlab
≤ 4.5.7
jupyter
notebook
7.0.0 — 7.5.6

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-79

Penetration testing submits XSS payloads to web applications, detecting cross-site scripting flaws for subsequent remediation.

addresses: CWE-79

Validates web inputs to reject script-related content that could produce XSS.

addresses: CWE-79

Output validation against expected content can reject or sanitize script content in generated web pages, reducing XSS exploitability.

References