CVE-2025-53000
Unknown Unknown - Not Provided
Arbitrary Code Execution in nbconvert PDF Conversion on Windows

Publication date: 2025-12-17

Last updated on: 2026-02-18

Assigner: GitHub, Inc.

Description
The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions of nbconvert up to and including 7.16.6 on Windows have a vulnerability in which converting a notebook containing SVG output to a PDF results in unauthorized code execution. Specifically, a third party can create a `inkscape.bat` file that defines a Windows batch script, capable of arbitrary code execution. When a user runs `jupyter nbconvert --to pdf` on a notebook containing SVG output to a PDF on a Windows platform from this directory, the `inkscape.bat` file is run unexpectedly. This issue has been patched in version 7.17.0.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-17
Last Modified
2026-02-18
Generated
2026-06-16
AI Q&A
2025-12-17
EPSS Evaluated
2026-06-15
NVD
CVE-2025-53000
EUVD
EUVD-2025-203957
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
jupyter nbconvert 7.16.6
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-427 The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

The vulnerability exists in the nbconvert tool used by Jupyter to convert notebooks to other formats. On Windows, when converting a notebook containing SVG output to PDF, a malicious third party can place a file named 'inkscape.bat' in the directory. This batch script is then executed unexpectedly during the conversion process, allowing unauthorized arbitrary code execution.

Impact Analysis

This vulnerability can lead to unauthorized code execution on a Windows system when converting Jupyter notebooks with SVG output to PDF. An attacker could exploit this by placing a malicious 'inkscape.bat' file in the working directory, which would run arbitrary code with the user's privileges, potentially compromising the system or data.

Detection Guidance

Detection involves checking for the presence of a malicious 'inkscape.bat' file in directories where Jupyter notebooks with SVG output are converted to PDF on Windows systems. You can search for 'inkscape.bat' files in relevant directories using commands like 'dir /s inkscape.bat' in Command Prompt or 'Get-ChildItem -Path . -Filter inkscape.bat -Recurse' in PowerShell. Monitoring execution of 'inkscape.bat' during 'jupyter nbconvert --to pdf' operations may also help detect exploitation attempts. [1]

Mitigation Strategies

Immediate mitigation steps include avoiding converting notebooks containing SVG output to PDF on Windows platforms using 'jupyter nbconvert' until a patch is available. Additionally, ensure that no untrusted 'inkscape.bat' files exist in directories where conversions are performed. Running conversions in isolated or controlled environments and restricting write permissions to prevent creation of malicious batch files can also reduce risk. [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-53000. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart