CVE-2026-34052

MEDIUM

LTI JupyterHub Authenticator: Unbounded Memory Growth via Nonce Storage (Denial of Service)

Title source: cna

Description

LTI JupyterHub Authenticator is a JupyterHub authenticator for LTI. Prior to version 1.6.3, the LTI 1.1 validator stores OAuth nonces in a class-level dictionary that grows without bounds. Nonces are added before signature validation, so an attacker with knowledge of a valid consumer key can send repeated requests with unique nonces to gradually exhaust server memory, causing a denial of service. This issue has been patched in version 1.6.3.

References (2)

Core 2

Core References

X_Refsource_Confirm x_refsource_confirm

https://github.com/jupyterhub/ltiauthenticator/security/advisories/GHSA-8mxq-7xr7-2fxj

X_Refsource_Misc x_refsource_misc

https://github.com/jupyterhub/ltiauthenticator/releases/tag/1.6.3

Scores

CVSS v3 5.9

EPSS 0.0033

EPSS Percentile 24.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-401 CWE-770

Status published

Products (3)

jupyter/lti_jupyterhub_authenticator < 1.6.3

jupyterhub/ltiauthenticator < 1.6.3

pypi/jupyterhub-ltiauthenticator 0 - 1.6.3PyPI

Published Apr 03, 2026

Tracked Since Apr 04, 2026