Cyber Resilience

CVE-2026-5422

HighPublic PoCUpdated

Published: 02 June 2026

Published
02 June 2026
Modified
17 June 2026
KEV Added
Patch
CVSS Score v3.1 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
EPSS Score 0.0044 35.1th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2026-5422 is a high-severity Relative Path Traversal (CWE-23) vulnerability in Jupyter Jupyter Server. Its CVSS base score is 8.1 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 35.1th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

A path traversal vulnerability exists in jupyter-server version 2.17.0 due to an incorrect root directory boundary check in the _get_os_path() function within jupyter_server/services/contents/fileio.py. The check uses startswith(root) without appending a trailing path separator, allowing sibling directories with names starting with…

more

the same prefix as root_dir to bypass the check. Additionally, the to_os_path() function in utils.py does not strip ".." from path parts, enabling traversal sequences to bypass the vulnerable check. This vulnerability can lead to unauthorized read/write access to files in sibling directories, potentially exposing sensitive data in shared hosting environments.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1005 Data from Local System Collection
Adversaries may search local system sources, such as file systems, configuration files, local databases, virtual machine files, or process memory, to find files of interest and sensitive data prior to Exfiltration.
Why these techniques?

Path traversal in public-facing Jupyter server directly enables exploitation of the application (T1190) and unauthorized local file reads (T1005).

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2025-20059Shared CWE-23
CVE-2024-56340Shared CWE-23
CVE-2025-55747Shared CWE-23
CVE-2026-43533Shared CWE-23
CVE-2026-1022Shared CWE-23
CVE-2026-33175Same vendor: Jupyter
CVE-2025-2056Shared CWE-23
CVE-2025-27553Shared CWE-23
CVE-2023-25574Same vendor: Jupyter
CVE-2025-27610Shared CWE-23

Affected Assets

jupyter
jupyter server
2.17.0

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References