CVE-2026-34052— LTI JupyterHub Authenticator: Unbounded Memory Growth via Nonce Storage (Denial of Service)
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-34052
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
LTI JupyterHub Authenticator: Unbounded Memory Growth via Nonce Storage (Denial of Service)
Source: NVD (National Vulnerability Database)
Vulnerability Description
LTI JupyterHub Authenticator is a JupyterHub authenticator for LTI. Prior to version 1.6.3, the LTI 1.1 validator stores OAuth nonces in a class-level dictionary that grows without bounds. Nonces are added before signature validation, so an attacker with knowledge of a valid consumer key can send repeated requests with unique nonces to gradually exhaust server memory, causing a denial of service. This issue has been patched in version 1.6.3.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
在移除最后引用时对内存的释放不恰当(内存泄露)
Source: NVD (National Vulnerability Database)
Vulnerability Title
LTI JupyterHub Authenticator 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
LTI JupyterHub Authenticator是JupyterHub开源的一个 LTI 的 JupyterHub 认证器。 LTI JupyterHub Authenticator 1.6.3之前版本存在安全漏洞,该漏洞源于OAuth随机数存储无限制增长,可能导致拒绝服务攻击。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| jupyterhub | ltiauthenticator | < 1.6.3 | - |
II. Public POCs for CVE-2026-34052
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-34052
请登录查看更多情报信息。
Same Patch Batch · jupyterhub · 2026-04-03 · 3 CVEs total
| CVE-2026-33175 | 8.8 HIGH | OAuthenticator: Authentication Bypass in Auth0OAuthenticator via Unverified Email Claims |
| CVE-2026-33709 | JupyterHub has an Open Redirect Vulnerability |
IV. Related Vulnerabilities
Same vendor: jupyterhub
- CVE-2026-33709
JupyterHub has an Open Redirect Vulnerability - CVE-2026-33175
OAuthenticator: Authentication Bypass in Auth0OAuthenticator - CVE-2025-32428
Jupyter Remote Desktop Proxy makes TigerVNC accessible via t - CVE-2023-25574
JupyterHub's LTI13Authenticator: JWT signature not validated - CVE-2024-41942
JupyterHub has a privilege escalation vulnerability with the
Same weakness: CWE-401
- CVE-2026-43506
Prosody 安全漏洞 - CVE-2026-7379
Missing Release of Memory after Effective Lifetime in Wiresh - CVE-2026-40336
libgphoto2 has memory leak in ptp_unpack_Sony_DPD() secondar - CVE-2026-33775
Junos OS: MX Series: Mismatch between configured and receive - CVE-2026-33782
Junos OS: MX Series: In specific DHCPv6 scenarios jdhcpd mem
V. Comments for CVE-2026-34052
No comments yet