| Affected_by_vulnerabilities |
| 0 |
| url |
VCID-2ueu-3u8x-pkfs |
| vulnerability_id |
VCID-2ueu-3u8x-pkfs |
| summary |
Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a **race condition** in the `update_root_in_config` function, allowing an attacker to modify the `root` URL used by the Gradio frontend to communicate with the backend. By exploiting this flaw, an attacker can redirect user traffic to a malicious server. This could lead to the interception of sensitive data such as authentication credentials or uploaded files. This impacts all users who connect to a Gradio server, especially those exposed to the internet, where malicious actors could exploit this race condition. Users are advised to upgrade to `gradio>=5` to address this issue. There are no known workarounds for this issue. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H |
|
| 1 |
| value |
8.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
| reference_url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-xh2x-3mrm-fwqm |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H |
|
| 1 |
| value |
8.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
HIGH |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 3 |
| value |
7.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 4 |
| value |
8.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N |
|
| 5 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 6 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-11T15:16:16Z/ |
|
|
| url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-xh2x-3mrm-fwqm |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@5.0.0 |
| purl |
pkg:pypi/gradio@5.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-372f-v9bc-tkah |
|
| 1 |
| vulnerability |
VCID-3cr8-jcqv-pkc6 |
|
| 2 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 3 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 4 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 5 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 6 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 7 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 8 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 9 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@5.0.0 |
|
|
| aliases |
CVE-2024-47870, GHSA-xh2x-3mrm-fwqm, PYSEC-2024-218
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2ueu-3u8x-pkfs |
|
| 1 |
| url |
VCID-3w2j-55q7-t7by |
| vulnerability_id |
VCID-3w2j-55q7-t7by |
| summary |
Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves **insecure communication** between the FRP (Fast Reverse Proxy) client and server when Gradio's `share=True` option is used. HTTPS is not enforced on the connection, allowing attackers to intercept and read files uploaded to the Gradio server, as well as modify responses or data sent between the client and server. This impacts users who are sharing Gradio demos publicly over the internet using `share=True` without proper encryption, exposing sensitive data to potential eavesdroppers. Users are advised to upgrade to `gradio>=5` to address this issue. As a workaround, users can avoid using `share=True` in production environments and instead host their Gradio applications on servers with HTTPS enabled to ensure secure communication. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |
|
| 1 |
| value |
8.6 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
| reference_url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-279j-x4gx-hfrh |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |
|
| 1 |
| value |
9.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 3 |
| value |
8.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 4 |
| value |
8.6 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 5 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 6 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-11T15:19:13Z/ |
|
|
| url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-279j-x4gx-hfrh |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@5.0.0 |
| purl |
pkg:pypi/gradio@5.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-372f-v9bc-tkah |
|
| 1 |
| vulnerability |
VCID-3cr8-jcqv-pkc6 |
|
| 2 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 3 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 4 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 5 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 6 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 7 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 8 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 9 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@5.0.0 |
|
|
| aliases |
CVE-2024-47871, GHSA-279j-x4gx-hfrh, PYSEC-2024-219
|
| risk_score |
4.1 |
| exploitability |
0.5 |
| weighted_severity |
8.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3w2j-55q7-t7by |
|
| 2 |
| url |
VCID-4ahq-tuj8-fkgc |
| vulnerability_id |
VCID-4ahq-tuj8-fkgc |
| summary |
Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves data exposure due to the enable_monitoring flag not properly disabling monitoring when set to False. Even when monitoring is supposedly disabled, an attacker or unauthorized user can still access the monitoring dashboard by directly requesting the /monitoring endpoint. This means that sensitive application analytics may still be exposed, particularly in environments where monitoring is expected to be disabled. Users who set enable_monitoring=False to prevent unauthorized access to monitoring data are impacted. Users are advised to upgrade to gradio>=4.44 to address this issue. There are no known workarounds for this vulnerability. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
2.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.44.0 |
| purl |
pkg:pypi/gradio@4.44.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 3 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 4 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 5 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 6 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 7 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 8 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 9 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 10 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 11 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 12 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 13 |
| vulnerability |
VCID-khkm-yeun-3qf3 |
|
| 14 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 15 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 16 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 17 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 18 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 19 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.44.0 |
|
|
| aliases |
CVE-2024-47168, GHSA-hm3c-93pg-4cxw, PYSEC-2024-198
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4ahq-tuj8-fkgc |
|
| 3 |
| url |
VCID-4y28-s547-c3d3 |
| vulnerability_id |
VCID-4y28-s547-c3d3 |
| summary |
Gradio is an open-source Python package designed for quick prototyping. This vulnerability relates to **Server-Side Request Forgery (SSRF)** in the `/queue/join` endpoint. Gradio’s `async_save_url_to_cache` function allows attackers to force the Gradio server to send HTTP requests to user-controlled URLs. This could enable attackers to target internal servers or services within a local network and possibly exfiltrate data or cause unwanted internal requests. Additionally, the content from these URLs is stored locally, making it easier for attackers to upload potentially malicious files to the server. This impacts users deploying Gradio servers that use components like the Video component which involve URL fetching. Users are advised to upgrade to `gradio>=5` to address this issue. As a workaround, users can disable or heavily restrict URL-based inputs in their Gradio applications to trusted domains only. Additionally, implementing stricter URL validation (such as allowinglist-based validation) and ensuring that local or internal network addresses cannot be requested via the `/queue/join` endpoint can help mitigate the risk of SSRF attacks. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.2 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@5.0.0 |
| purl |
pkg:pypi/gradio@5.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-372f-v9bc-tkah |
|
| 1 |
| vulnerability |
VCID-3cr8-jcqv-pkc6 |
|
| 2 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 3 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 4 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 5 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 6 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 7 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 8 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 9 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@5.0.0 |
|
|
| aliases |
CVE-2024-47167, GHSA-576c-3j53-r9jj, PYSEC-2024-215
|
| risk_score |
4.4 |
| exploitability |
0.5 |
| weighted_severity |
8.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4y28-s547-c3d3 |
|
| 4 |
| url |
VCID-5c6u-kz54-a7ee |
| vulnerability_id |
VCID-5c6u-kz54-a7ee |
| summary |
Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves **Cross-Site Scripting (XSS)** on any Gradio server that allows file uploads. Authenticated users can upload files such as HTML, JavaScript, or SVG files containing malicious scripts. When other users download or view these files, the scripts will execute in their browser, allowing attackers to perform unauthorized actions or steal sensitive information from their sessions. This impacts any Gradio server that allows file uploads, particularly those using components that process or display user-uploaded files. Users are advised to upgrade to `gradio>=5` to address this issue. As a workaround, users can restrict the types of files that can be uploaded to the Gradio server by limiting uploads to non-executable file types such as images or text. Additionally, developers can implement server-side validation to sanitize uploaded files, ensuring that HTML, JavaScript, and SVG files are properly handled or rejected before being stored or displayed to users. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
4.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
| reference_url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-gvv6-33j7-884g |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
4.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 3 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
|
| 4 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 5 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-11T15:19:51Z/ |
|
|
| url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-gvv6-33j7-884g |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@5.0.0 |
| purl |
pkg:pypi/gradio@5.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-372f-v9bc-tkah |
|
| 1 |
| vulnerability |
VCID-3cr8-jcqv-pkc6 |
|
| 2 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 3 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 4 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 5 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 6 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 7 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 8 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 9 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@5.0.0 |
|
|
| aliases |
CVE-2024-47872, GHSA-gvv6-33j7-884g, PYSEC-2024-220
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5c6u-kz54-a7ee |
|
| 5 |
| url |
VCID-6cys-sapp-9yh6 |
| vulnerability_id |
VCID-6cys-sapp-9yh6 |
| summary |
Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a **timing attack** in the way Gradio compares hashes for the `analytics_dashboard` function. Since the comparison is not done in constant time, an attacker could exploit this by measuring the response time of different requests to infer the correct hash byte-by-byte. This can lead to unauthorized access to the analytics dashboard, especially if the attacker can repeatedly query the system with different keys. Users are advised to upgrade to `gradio>4.44` to mitigate this issue. To mitigate the risk before applying the patch, developers can manually patch the `analytics_dashboard` dashboard to use a **constant-time comparison** function for comparing sensitive values, such as hashes. Alternatively, access to the analytics dashboard can be disabled. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
3.7 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
6.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
| reference_url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-j757-pf57-f8r4 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
3.7 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
2.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
6.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 4 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 5 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-11T15:08:36Z/ |
|
|
| url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-j757-pf57-f8r4 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.44.0 |
| purl |
pkg:pypi/gradio@4.44.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 3 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 4 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 5 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 6 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 7 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 8 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 9 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 10 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 11 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 12 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 13 |
| vulnerability |
VCID-khkm-yeun-3qf3 |
|
| 14 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 15 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 16 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 17 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 18 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 19 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.44.0 |
|
|
| aliases |
CVE-2024-47869, GHSA-j757-pf57-f8r4, PYSEC-2024-199
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6cys-sapp-9yh6 |
|
| 6 |
| url |
VCID-891h-rrw9-d3cx |
| vulnerability_id |
VCID-891h-rrw9-d3cx |
| summary |
Command Injection in GitHub repository gradio-app/gradio prior to main. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://huntr.com/bounties/21d2ff0c-d43a-4afd-bb4d-049ee8da5b5c |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.6 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N |
|
| 1 |
| value |
8.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
|
| 2 |
| value |
9.6 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N |
|
| 3 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 4 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-22T17:40:43Z/ |
|
|
| url |
https://huntr.com/bounties/21d2ff0c-d43a-4afd-bb4d-049ee8da5b5c |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.14.0 |
| purl |
pkg:pypi/gradio@4.14.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-99va-f8e5-cbce |
|
| 7 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 8 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 9 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 10 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 11 |
| vulnerability |
VCID-e945-mbq6-pyc4 |
|
| 12 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 13 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 14 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 15 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 16 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 17 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 18 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 19 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 20 |
| vulnerability |
VCID-n8da-ed1s-9yhg |
|
| 21 |
| vulnerability |
VCID-qnyg-tuak-xkhe |
|
| 22 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 23 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 24 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 25 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 26 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 27 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 28 |
| vulnerability |
VCID-w575-2fgw-13bk |
|
| 29 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 30 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 31 |
| vulnerability |
VCID-x165-3m21-x7en |
|
| 32 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 33 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.14.0 |
|
|
| aliases |
CVE-2023-6572, GHSA-gqvf-3hgp-5hxv, PYSEC-2023-255
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-891h-rrw9-d3cx |
|
| 7 |
| url |
VCID-99va-f8e5-cbce |
| vulnerability_id |
VCID-99va-f8e5-cbce |
| summary |
gradio Server-Side Request Forgery vulnerability
The /proxy route allows a user to proxy arbitrary urls including potential internal endpoints. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.18.0 |
| purl |
pkg:pypi/gradio@4.18.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 7 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 8 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 9 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 10 |
| vulnerability |
VCID-e945-mbq6-pyc4 |
|
| 11 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 12 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 13 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 14 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 15 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 16 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 17 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 18 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 19 |
| vulnerability |
VCID-n8da-ed1s-9yhg |
|
| 20 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 21 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 22 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 23 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 24 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 25 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 26 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 27 |
| vulnerability |
VCID-w575-2fgw-13bk |
|
| 28 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 29 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 30 |
| vulnerability |
VCID-x165-3m21-x7en |
|
| 31 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 32 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.18.0 |
|
|
| aliases |
CVE-2024-2206, GHSA-r364-m2j9-mf4h
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-99va-f8e5-cbce |
|
| 8 |
| url |
VCID-9nyf-xj5e-yqdj |
| vulnerability_id |
VCID-9nyf-xj5e-yqdj |
| summary |
Gradio's Component Server does not properly consider` _is_server_fn` for functions
Component Server in Gradio before 4.13 does not properly consider` _is_server_fn` for functions. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.13.0 |
| purl |
pkg:pypi/gradio@4.13.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-891h-rrw9-d3cx |
|
| 7 |
| vulnerability |
VCID-99va-f8e5-cbce |
|
| 8 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 9 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 10 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 11 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 12 |
| vulnerability |
VCID-e945-mbq6-pyc4 |
|
| 13 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 14 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 15 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 16 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 17 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 18 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 19 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 20 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 21 |
| vulnerability |
VCID-n8da-ed1s-9yhg |
|
| 22 |
| vulnerability |
VCID-qnyg-tuak-xkhe |
|
| 23 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 24 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 25 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 26 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 27 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 28 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 29 |
| vulnerability |
VCID-w575-2fgw-13bk |
|
| 30 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 31 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 32 |
| vulnerability |
VCID-x165-3m21-x7en |
|
| 33 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 34 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.13.0 |
|
|
| aliases |
CVE-2024-34511, GHSA-34rf-p3r3-58x2
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9nyf-xj5e-yqdj |
|
| 9 |
| url |
VCID-aajd-8tqx-c3bn |
| vulnerability_id |
VCID-aajd-8tqx-c3bn |
| summary |
Gradio is an open-source Python package that allows quick building of demos and web application for machine learning models, API, or any arbitrary Python function. Gradio's Access Control List (ACL) for file paths can be bypassed by altering the letter case of a blocked file or directory path. This vulnerability arises due to the lack of case normalization in the file path validation logic. On case-insensitive file systems, such as those used by Windows and macOS, this flaw enables attackers to circumvent security restrictions and access sensitive files that should be protected. This issue can lead to unauthorized data access, exposing sensitive information and undermining the integrity of Gradio's security model. Given Gradio's popularity for building web applications, particularly in machine learning and AI, this vulnerability may pose a substantial threat if exploited in production environments. This issue has been addressed in release version 5.6.0. Users are advised to upgrade. There are no known workarounds for this vulnerability. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-23042, GHSA-j2jg-fq62-7c3h, PYSEC-2025-118
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-aajd-8tqx-c3bn |
|
| 10 |
| url |
VCID-b15z-tjeb-gyeh |
| vulnerability_id |
VCID-b15z-tjeb-gyeh |
| summary |
Gradio DOS in multipart boundry while uploading the file
A vulnerability in the file upload process of gradio-app/gradio version @gradio/video@0.10.2 allows for a Denial of Service (DoS) attack. An attacker can append a large number of characters to the end of a multipart boundary, causing the system to continuously process each character and issue warnings. This can render Gradio inaccessible for extended periods, disrupting services and causing significant downtime. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2024-8966, GHSA-5cpq-9538-jm2j
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-b15z-tjeb-gyeh |
|
| 11 |
| url |
VCID-bmqt-uegd-hyap |
| vulnerability_id |
VCID-bmqt-uegd-hyap |
| summary |
Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.6.0, a Server-Side Request Forgery (SSRF) vulnerability in Gradio allows an attacker to make arbitrary HTTP requests from a victim's server by hosting a malicious Gradio Space. When a victim application uses `gr.load()` to load an attacker-controlled Space, the malicious `proxy_url` from the config is trusted and added to the allowlist, enabling the attacker to access internal services, cloud metadata endpoints, and private networks through the victim's infrastructure. Version 6.6.0 fixes the issue. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2026-28416, GHSA-jmh7-g254-2cq9, PYSEC-2026-66
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bmqt-uegd-hyap |
|
| 12 |
| url |
VCID-dsw8-wy3z-53hm |
| vulnerability_id |
VCID-dsw8-wy3z-53hm |
| summary |
Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.7, Gradio apps running on Window with Python 3.13+ are vulnerable to an absolute path traversal issue that enables unauthenticated attackers to read arbitrary files from the file system. Python 3.13+ changed the definition of `os.path.isabs` so that root-relative paths like `/windows/win.ini` on Windows are no longer considered absolute paths, resulting in a vulnerability in Gradio's logic for joining paths safely. This can be exploited by unauthenticated attackers to read arbitrary files from the Gradio server, even when Gradio is set up with authentication. Version 6.7 fixes the issue. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2026-28414, GHSA-39mp-8hj3-5c49, PYSEC-2026-64
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dsw8-wy3z-53hm |
|
| 13 |
| url |
VCID-e945-mbq6-pyc4 |
| vulnerability_id |
VCID-e945-mbq6-pyc4 |
| summary |
Cross-Site Request Forgery in Gradio
A Cross-Site Request Forgery gives attackers the ability to upload many large files to a victim, if they are running Gradio locally. To resolve this a PR tightening the CORS rules around Gradio applications has been submitted. In particular, it checks to see if the host header is localhost (or one of its aliases) and if so, it requires the origin header (if present) to be localhost (or one of its aliases) as well. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L |
|
| 1 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
| reference_url |
https://huntr.com/bounties/a94d55fb-0770-4cbe-9b20-97a978a2ffff |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L |
|
| 1 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L |
|
| 2 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 4 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-25T16:25:33Z/ |
|
|
| url |
https://huntr.com/bounties/a94d55fb-0770-4cbe-9b20-97a978a2ffff |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.19.2 |
| purl |
pkg:pypi/gradio@4.19.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 7 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 8 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 9 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 10 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 11 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 12 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 13 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 14 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 15 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 16 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 17 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 18 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 19 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 20 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 21 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 22 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 23 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 24 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 25 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 26 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 27 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 28 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.19.2 |
|
|
| aliases |
CVE-2024-1727, GHSA-3x9g-xfj5-fq84, GHSA-48cq-79qq-6f7x
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-e945-mbq6-pyc4 |
|
| 14 |
| url |
VCID-ejg7-khk7-9qf3 |
| vulnerability_id |
VCID-ejg7-khk7-9qf3 |
| summary |
Gradio is an open-source Python package designed for quick prototyping. This vulnerability is a **lack of integrity check** on the downloaded FRP client, which could potentially allow attackers to introduce malicious code. If an attacker gains access to the remote URL from which the FRP client is downloaded, they could modify the binary without detection, as the Gradio server does not verify the file's checksum or signature. Any users utilizing the Gradio server's sharing mechanism that downloads the FRP client could be affected by this vulnerability, especially those relying on the executable binary for secure data tunneling. There is no direct workaround for this issue without upgrading. However, users can manually validate the integrity of the downloaded FRP client by implementing checksum or signature verification in their own environment to ensure the binary hasn't been tampered with. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
7.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
| reference_url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-8c87-gvhj-xm8m |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
|
| 1 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
HIGH |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 3 |
| value |
2.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
|
| 4 |
| value |
7.5 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 5 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 6 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-11T15:06:22Z/ |
|
|
| url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-8c87-gvhj-xm8m |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@5.0.0 |
| purl |
pkg:pypi/gradio@5.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-372f-v9bc-tkah |
|
| 1 |
| vulnerability |
VCID-3cr8-jcqv-pkc6 |
|
| 2 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 3 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 4 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 5 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 6 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 7 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 8 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 9 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@5.0.0 |
|
|
| aliases |
CVE-2024-47867, GHSA-8c87-gvhj-xm8m, PYSEC-2024-216
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ejg7-khk7-9qf3 |
|
| 15 |
| url |
VCID-g36q-9t77-nuc9 |
| vulnerability_id |
VCID-g36q-9t77-nuc9 |
| summary |
Gradio is an open-source Python package designed for quick prototyping. This vulnerability is related to **CORS origin validation**, where the Gradio server fails to validate the request origin when a cookie is present. This allows an attacker’s website to make unauthorized requests to a local Gradio server. Potentially, attackers can upload files, steal authentication tokens, and access user data if the victim visits a malicious website while logged into Gradio. This impacts users who have deployed Gradio locally and use basic authentication. Users are advised to upgrade to `gradio>4.44` to address this issue. As a workaround, users can manually enforce stricter CORS origin validation by modifying the `CustomCORSMiddleware` class in their local Gradio server code. Specifically, they can bypass the condition that skips CORS validation for requests containing cookies to prevent potential exploitation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
| reference_url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-3c67-5hwx-f6wx |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L |
|
| 1 |
| value |
8.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
HIGH |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 3 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
|
| 4 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 5 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 6 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-11T15:23:34Z/ |
|
|
| url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-3c67-5hwx-f6wx |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.44.0 |
| purl |
pkg:pypi/gradio@4.44.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 3 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 4 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 5 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 6 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 7 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 8 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 9 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 10 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 11 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 12 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 13 |
| vulnerability |
VCID-khkm-yeun-3qf3 |
|
| 14 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 15 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 16 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 17 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 18 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 19 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.44.0 |
|
|
| aliases |
CVE-2024-47084, GHSA-3c67-5hwx-f6wx, PYSEC-2024-196
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-g36q-9t77-nuc9 |
|
| 16 |
| url |
VCID-gbtq-hhrr-rkbm |
| vulnerability_id |
VCID-gbtq-hhrr-rkbm |
| summary |
gradio vulnerable to Path Traversal
An issue was discovered in gradio-app/gradio, where the `/component_server` endpoint improperly allows the invocation of any method on a `Component` class with attacker-controlled arguments. Specifically, by exploiting the `move_resource_to_block_cache()` method of the `Block` class, an attacker can copy any file on the filesystem to a temporary directory and subsequently retrieve it. This vulnerability enables unauthorized local file read access, posing a significant risk especially when the application is exposed to the internet via `launch(share=True)`, thereby allowing remote attackers to read files on the host machine. Furthermore, gradio apps hosted on `huggingface.co` are also affected, potentially leading to the exposure of sensitive information such as API keys and credentials stored in environment variables. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://www.gradio.app/changelog#4-13-0 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 3 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-13T19:06:47Z/ |
|
|
| url |
https://www.gradio.app/changelog#4-13-0 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.13.0 |
| purl |
pkg:pypi/gradio@4.13.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-891h-rrw9-d3cx |
|
| 7 |
| vulnerability |
VCID-99va-f8e5-cbce |
|
| 8 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 9 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 10 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 11 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 12 |
| vulnerability |
VCID-e945-mbq6-pyc4 |
|
| 13 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 14 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 15 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 16 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 17 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 18 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 19 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 20 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 21 |
| vulnerability |
VCID-n8da-ed1s-9yhg |
|
| 22 |
| vulnerability |
VCID-qnyg-tuak-xkhe |
|
| 23 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 24 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 25 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 26 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 27 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 28 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 29 |
| vulnerability |
VCID-w575-2fgw-13bk |
|
| 30 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 31 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 32 |
| vulnerability |
VCID-x165-3m21-x7en |
|
| 33 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 34 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.13.0 |
|
|
| aliases |
CVE-2024-1561, GHSA-g9cj-cfpp-4g2x
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gbtq-hhrr-rkbm |
|
| 17 |
| url |
VCID-grp8-svdp-r7e6 |
| vulnerability_id |
VCID-grp8-svdp-r7e6 |
| summary |
A local file inclusion vulnerability exists in the JSON component of gradio-app/gradio version 4.25. The vulnerability arises from improper input validation in the `postprocess()` function within `gradio/components/json_component.py`, where a user-controlled string is parsed as JSON. If the parsed JSON object contains a `path` key, the specified file is moved to a temporary directory, making it possible to retrieve it later via the `/file=..` endpoint. This issue is due to the `processing_utils.move_files_to_cache()` function traversing any object passed to it, looking for a dictionary with a `path` key, and then copying the specified file to a temporary directory. The vulnerability can be exploited by an attacker to read files on the remote system, posing a significant security risk. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://huntr.com/bounties/39889ce1-298d-4568-aecd-7ae40c2ca58e |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 2 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 4 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-20T18:13:53Z/ |
|
|
| url |
https://huntr.com/bounties/39889ce1-298d-4568-aecd-7ae40c2ca58e |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.31.3 |
| purl |
pkg:pypi/gradio@4.31.3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 7 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 8 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 9 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 10 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 11 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 12 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 13 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 14 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 15 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 16 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 17 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 18 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 19 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 20 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 21 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 22 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 23 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 24 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 25 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 26 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 27 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.31.3 |
|
| 1 |
| url |
pkg:pypi/gradio@4.31.4 |
| purl |
pkg:pypi/gradio@4.31.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 7 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 8 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 9 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 10 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 11 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 12 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 13 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 14 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 15 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 16 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 17 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 18 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 19 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 20 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 21 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 22 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 23 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 24 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 25 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 26 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.31.4 |
|
|
| aliases |
CVE-2024-4941, GHSA-6v6g-j5fq-hpvw, PYSEC-2024-184
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-grp8-svdp-r7e6 |
|
| 18 |
| url |
VCID-h9ep-6qj7-pued |
| vulnerability_id |
VCID-h9ep-6qj7-pued |
| summary |
Gradio is an open-source Python package designed for quick prototyping. This vulnerability relates to the **bypass of directory traversal checks** within the `is_in_or_equal` function. This function, intended to check if a file resides within a given directory, can be bypassed with certain payloads that manipulate file paths using `..` (parent directory) sequences. Attackers could potentially access restricted files if they are able to exploit this flaw, although the difficulty is high. This primarily impacts users relying on Gradio’s blocklist or directory access validation, particularly when handling file uploads. Users are advised to upgrade to `gradio>=5.0` to address this issue. As a workaround, users can manually sanitize and normalize file paths in their Gradio deployment before passing them to the `is_in_or_equal` function. Ensuring that all file paths are properly resolved and absolute can help mitigate the bypass vulnerabilities caused by the improper handling of `..` sequences or malformed paths. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
|
| 3 |
| reference_url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-77xq-6g77-h274 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
2.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 4 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 5 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-11T15:24:39Z/ |
|
|
| url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-77xq-6g77-h274 |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@5.0.0 |
| purl |
pkg:pypi/gradio@5.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-372f-v9bc-tkah |
|
| 1 |
| vulnerability |
VCID-3cr8-jcqv-pkc6 |
|
| 2 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 3 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 4 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 5 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 6 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 7 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 8 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 9 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@5.0.0 |
|
|
| aliases |
CVE-2024-47164, GHSA-77xq-6g77-h274, PYSEC-2024-213
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-h9ep-6qj7-pued |
|
| 19 |
| url |
VCID-j1w9-nvdf-nfbr |
| vulnerability_id |
VCID-j1w9-nvdf-nfbr |
| summary |
Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.6.0, the _redirect_to_target() function in Gradio's OAuth flow accepts an unvalidated _target_url query parameter, allowing redirection to arbitrary external URLs. This affects the /logout and /login/callback endpoints on Gradio apps with OAuth enabled (i.e. apps running on Hugging Face Spaces with gr.LoginButton). Starting in version 6.6.0, the _target_url parameter is sanitized to only use the path, query, and fragment, stripping any scheme or host. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2026-28415, GHSA-pfjf-5gxr-995x, PYSEC-2026-65
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-j1w9-nvdf-nfbr |
|
| 20 |
| url |
VCID-mk15-qxqc-vfab |
| vulnerability_id |
VCID-mk15-qxqc-vfab |
| summary |
Gradio is an open-source Python package designed for quick prototyping. This vulnerability relates to **CORS origin validation accepting a null origin**. When a Gradio server is deployed locally, the `localhost_aliases` variable includes "null" as a valid origin. This allows attackers to make unauthorized requests from sandboxed iframes or other sources with a null origin, potentially leading to data theft, such as user authentication tokens or uploaded files. This impacts users running Gradio locally, especially those using basic authentication. Users are advised to upgrade to `gradio>=5.0` to address this issue. As a workaround, users can manually modify the `localhost_aliases` list in their local Gradio deployment to exclude "null" as a valid origin. By removing this value, the Gradio server will no longer accept requests from sandboxed iframes or sources with a null origin, mitigating the potential for exploitation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
| reference_url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-89v2-pqfv-c5r9 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 4 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 5 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-11T15:25:38Z/ |
|
|
| url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-89v2-pqfv-c5r9 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@5.0.0 |
| purl |
pkg:pypi/gradio@5.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-372f-v9bc-tkah |
|
| 1 |
| vulnerability |
VCID-3cr8-jcqv-pkc6 |
|
| 2 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 3 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 4 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 5 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 6 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 7 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 8 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 9 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@5.0.0 |
|
|
| aliases |
CVE-2024-47165, GHSA-89v2-pqfv-c5r9, PYSEC-2024-214
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mk15-qxqc-vfab |
|
| 21 |
| url |
VCID-n8da-ed1s-9yhg |
| vulnerability_id |
VCID-n8da-ed1s-9yhg |
| summary |
Gradio allows users to access arbitrary files
This vulnerability allows users of Gradio applications that have a public link (such as on Hugging Face Spaces) to access files on the machine hosting the Gradio application. This involves intercepting and modifying the network requests made by the Gradio app to the server. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
|
| 3 |
| reference_url |
https://huntr.com/bounties/9bb33b71-7995-425d-91cc-2c2a2f2a068a |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
8.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
9.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 3 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 4 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-15T18:41:26Z/ |
|
|
| url |
https://huntr.com/bounties/9bb33b71-7995-425d-91cc-2c2a2f2a068a |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.19.2 |
| purl |
pkg:pypi/gradio@4.19.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 7 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 8 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 9 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 10 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 11 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 12 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 13 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 14 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 15 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 16 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 17 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 18 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 19 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 20 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 21 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 22 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 23 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 24 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 25 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 26 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 27 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 28 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.19.2 |
|
|
| aliases |
CVE-2024-1728, GHSA-m842-4qm8-7gpq
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-n8da-ed1s-9yhg |
|
| 22 |
| url |
VCID-pfhr-s1pv-17bm |
| vulnerability_id |
VCID-pfhr-s1pv-17bm |
| summary |
A local file include could be remotely triggered in Gradio due to a vulnerable user-supplied JSON value in an API request. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://huntr.com/bounties/25e25501-5918-429c-8541-88832dfd3741 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 2 |
| value |
9.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 4 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-06T18:33:00Z/ |
|
|
| url |
https://huntr.com/bounties/25e25501-5918-429c-8541-88832dfd3741 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.9.0 |
| purl |
pkg:pypi/gradio@4.9.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-891h-rrw9-d3cx |
|
| 7 |
| vulnerability |
VCID-99va-f8e5-cbce |
|
| 8 |
| vulnerability |
VCID-9nyf-xj5e-yqdj |
|
| 9 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 10 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 11 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 12 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 13 |
| vulnerability |
VCID-e945-mbq6-pyc4 |
|
| 14 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 15 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 16 |
| vulnerability |
VCID-gbtq-hhrr-rkbm |
|
| 17 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 18 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 19 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 20 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 21 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 22 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 23 |
| vulnerability |
VCID-n8da-ed1s-9yhg |
|
| 24 |
| vulnerability |
VCID-qnyg-tuak-xkhe |
|
| 25 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 26 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 27 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 28 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 29 |
| vulnerability |
VCID-uhjk-e9b3-cqea |
|
| 30 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 31 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 32 |
| vulnerability |
VCID-w575-2fgw-13bk |
|
| 33 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 34 |
| vulnerability |
VCID-wgzj-vqbt-yqcd |
|
| 35 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 36 |
| vulnerability |
VCID-x165-3m21-x7en |
|
| 37 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 38 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.9.0 |
|
|
| aliases |
CVE-2024-0964, GHSA-f3h9-8phc-6gvh, PYSEC-2024-261
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pfhr-s1pv-17bm |
|
| 23 |
| url |
VCID-q41h-dde2-93gc |
| vulnerability_id |
VCID-q41h-dde2-93gc |
| summary |
Gradio is an open-source Python library that is used to build machine learning and data science. Due to a lack of path filtering Gradio does not properly restrict file access to users. Additionally Gradio does not properly restrict the what URLs are proxied. These issues have been addressed in version 3.34.0. Users are advised to upgrade. There are no known workarounds for this vulnerability. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
| reference_url |
https://github.com/gradio-app/gradio/pull/4370 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 3 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-01-06T20:33:03Z/ |
|
|
| url |
https://github.com/gradio-app/gradio/pull/4370 |
|
| 6 |
| reference_url |
https://github.com/gradio-app/gradio/pull/4406 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 3 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-01-06T20:33:03Z/ |
|
|
| url |
https://github.com/gradio-app/gradio/pull/4406 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@3.34.0 |
| purl |
pkg:pypi/gradio@3.34.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-891h-rrw9-d3cx |
|
| 7 |
| vulnerability |
VCID-99va-f8e5-cbce |
|
| 8 |
| vulnerability |
VCID-9nyf-xj5e-yqdj |
|
| 9 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 10 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 11 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 12 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 13 |
| vulnerability |
VCID-e945-mbq6-pyc4 |
|
| 14 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 15 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 16 |
| vulnerability |
VCID-gbtq-hhrr-rkbm |
|
| 17 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 18 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 19 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 20 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 21 |
| vulnerability |
VCID-n8da-ed1s-9yhg |
|
| 22 |
| vulnerability |
VCID-pfhr-s1pv-17bm |
|
| 23 |
| vulnerability |
VCID-qnyg-tuak-xkhe |
|
| 24 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 25 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 26 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 27 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 28 |
| vulnerability |
VCID-uhjk-e9b3-cqea |
|
| 29 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 30 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 31 |
| vulnerability |
VCID-w575-2fgw-13bk |
|
| 32 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 33 |
| vulnerability |
VCID-wgzj-vqbt-yqcd |
|
| 34 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 35 |
| vulnerability |
VCID-x165-3m21-x7en |
|
| 36 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 37 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@3.34.0 |
|
|
| aliases |
CVE-2023-34239, GHSA-3qqg-pgqq-3695, PYSEC-2023-90
|
| risk_score |
3.3 |
| exploitability |
0.5 |
| weighted_severity |
6.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q41h-dde2-93gc |
|
| 24 |
| url |
VCID-q4pd-qqyf-vqcq |
| vulnerability_id |
VCID-q4pd-qqyf-vqcq |
| summary |
`gradio` is an open source framework for building interactive machine learning models and demos. Prior to version 2.8.11, `gradio` suffers from Improper Neutralization of Formula Elements in a CSV File. The `gradio` library has a flagging functionality which saves input/output data into a CSV file on the developer's computer. This can allow a user to save arbitrary text into the CSV file, such as commands. If a program like MS Excel opens such a file, then it automatically runs these commands, which could lead to arbitrary commands running on the user's computer. The problem has been patched as of `2.8.11`, which escapes the saved csv with single quotes. As a workaround, avoid opening csv files generated by `gradio` with Excel or similar spreadsheet programs. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@2.8.11 |
| purl |
pkg:pypi/gradio@2.8.11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-891h-rrw9-d3cx |
|
| 7 |
| vulnerability |
VCID-99va-f8e5-cbce |
|
| 8 |
| vulnerability |
VCID-9nyf-xj5e-yqdj |
|
| 9 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 10 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 11 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 12 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 13 |
| vulnerability |
VCID-e945-mbq6-pyc4 |
|
| 14 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 15 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 16 |
| vulnerability |
VCID-gbtq-hhrr-rkbm |
|
| 17 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 18 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 19 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 20 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 21 |
| vulnerability |
VCID-n8da-ed1s-9yhg |
|
| 22 |
| vulnerability |
VCID-pfhr-s1pv-17bm |
|
| 23 |
| vulnerability |
VCID-q41h-dde2-93gc |
|
| 24 |
| vulnerability |
VCID-qnyg-tuak-xkhe |
|
| 25 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 26 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 27 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 28 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 29 |
| vulnerability |
VCID-uhjk-e9b3-cqea |
|
| 30 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 31 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 32 |
| vulnerability |
VCID-w575-2fgw-13bk |
|
| 33 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 34 |
| vulnerability |
VCID-wgzj-vqbt-yqcd |
|
| 35 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 36 |
| vulnerability |
VCID-x165-3m21-x7en |
|
| 37 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 38 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
| 39 |
| vulnerability |
VCID-zy84-a8qv-mkdu |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@2.8.11 |
|
|
| aliases |
CVE-2022-24770, GHSA-f8xq-q7px-wg8c, PYSEC-2022-229
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q4pd-qqyf-vqcq |
|
| 25 |
| url |
VCID-qnyg-tuak-xkhe |
| vulnerability_id |
VCID-qnyg-tuak-xkhe |
| summary |
Gradio's CI vulnerable to Command Injection
Previously, it was possible to exfiltrate secrets in Gradio's CI, but this is now fixed. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.18.0 |
| purl |
pkg:pypi/gradio@4.18.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 7 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 8 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 9 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 10 |
| vulnerability |
VCID-e945-mbq6-pyc4 |
|
| 11 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 12 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 13 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 14 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 15 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 16 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 17 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 18 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 19 |
| vulnerability |
VCID-n8da-ed1s-9yhg |
|
| 20 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 21 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 22 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 23 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 24 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 25 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 26 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 27 |
| vulnerability |
VCID-w575-2fgw-13bk |
|
| 28 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 29 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 30 |
| vulnerability |
VCID-x165-3m21-x7en |
|
| 31 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 32 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.18.0 |
|
|
| aliases |
CVE-2024-1540, GHSA-xcgp-r7r8-2hc9
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qnyg-tuak-xkhe |
|
| 26 |
| url |
VCID-s2en-q2qm-g7c7 |
| vulnerability_id |
VCID-s2en-q2qm-g7c7 |
| summary |
Open redirect in gradio
An open redirect vulnerability exists in the gradio-app/gradio, affecting the latest version. The vulnerability allows an attacker to redirect users to arbitrary websites, which can be exploited for phishing attacks, Cross-site Scripting (XSS), Server-Side Request Forgery (SSRF), amongst others. This issue is due to improper validation of user-supplied input in the handling of URLs. Attackers can exploit this vulnerability by crafting a malicious URL that, when processed by the application, redirects the user to an attacker-controlled web page. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2024-4940, GHSA-g6c9-f4xm-9j4x
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-s2en-q2qm-g7c7 |
|
| 27 |
| url |
VCID-t89m-72z1-a3cv |
| vulnerability_id |
VCID-t89m-72z1-a3cv |
| summary |
Server-Side Request Forgery in gradio
A Server-Side Request Forgery (SSRF) vulnerability exists in the gradio-app/gradio and was discovered in version 4.21.0, specifically within the `/queue/join` endpoint and the `save_url_to_cache` function. The vulnerability arises when the `path` value, obtained from the user and expected to be a URL, is used to make an HTTP request without sufficient validation checks. This flaw allows an attacker to send crafted requests that could lead to unauthorized access to the local network or the AWS metadata endpoint, thereby compromising the security of internal servers. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2024-4325, GHSA-973g-55hp-3frw
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-t89m-72z1-a3cv |
|
| 28 |
| url |
VCID-u9tt-44vk-nyhg |
| vulnerability_id |
VCID-u9tt-44vk-nyhg |
| summary |
Gradio's dropdown component pre-process step does not limit the values to those in the dropdown list
**What kind of vulnerability is it? Who is impacted?**
This vulnerability is a **data validation issue** in the Gradio `Dropdown` component's pre-processing step. Even if the `allow_custom_value` parameter is set to `False`, attackers can bypass this restriction by sending custom requests with arbitrary values, effectively breaking the developer’s intended input constraints. While this alone is not a severe vulnerability, it can lead to more critical security issues, particularly when paired with other vulnerabilities like file downloads from the user's machine. |
| references |
| 0 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
2.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U |
|
| 2 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 1 |
|
| 2 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@5.0.0 |
| purl |
pkg:pypi/gradio@5.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-372f-v9bc-tkah |
|
| 1 |
| vulnerability |
VCID-3cr8-jcqv-pkc6 |
|
| 2 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 3 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 4 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 5 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 6 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 7 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 8 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 9 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@5.0.0 |
|
|
| aliases |
GHSA-26jh-r8g2-6fpr
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-u9tt-44vk-nyhg |
|
| 29 |
| url |
VCID-uew9-38g7-bqft |
| vulnerability_id |
VCID-uew9-38g7-bqft |
| summary |
Gradio is an open-source Python package that allows quick building of demos and web application for machine learning models, API, or any arbitrary Python function. Prior to version 5.31.0, an arbitrary file copy vulnerability in Gradio's flagging feature allows unauthenticated attackers to copy any readable file from the server's filesystem. While attackers can't read these copied files, they can cause DoS by copying large files (like /dev/urandom) to fill disk space. This issue has been patched in version 5.31.0. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-48889, GHSA-8jw3-6x8j-v96g, PYSEC-2025-119
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-uew9-38g7-bqft |
|
| 30 |
| url |
VCID-uhjk-e9b3-cqea |
| vulnerability_id |
VCID-uhjk-e9b3-cqea |
| summary |
Gradio is an open-source Python package that allows you to quickly build a demo or web application for your machine learning model, API, or any arbitary Python function. Versions of `gradio` prior to 4.11.0 contained a vulnerability in the `/file` route which made them susceptible to file traversal attacks in which an attacker could access arbitrary files on a machine running a Gradio app with a public URL (e.g. if the demo was created with `share=True`, or on Hugging Face Spaces) if they knew the path of files to look for. This issue has been patched in version 4.11.0. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.11.0 |
| purl |
pkg:pypi/gradio@4.11.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-891h-rrw9-d3cx |
|
| 7 |
| vulnerability |
VCID-99va-f8e5-cbce |
|
| 8 |
| vulnerability |
VCID-9nyf-xj5e-yqdj |
|
| 9 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 10 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 11 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 12 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 13 |
| vulnerability |
VCID-e945-mbq6-pyc4 |
|
| 14 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 15 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 16 |
| vulnerability |
VCID-gbtq-hhrr-rkbm |
|
| 17 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 18 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 19 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 20 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 21 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 22 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 23 |
| vulnerability |
VCID-n8da-ed1s-9yhg |
|
| 24 |
| vulnerability |
VCID-qnyg-tuak-xkhe |
|
| 25 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 26 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 27 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 28 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 29 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 30 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 31 |
| vulnerability |
VCID-w575-2fgw-13bk |
|
| 32 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 33 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 34 |
| vulnerability |
VCID-x165-3m21-x7en |
|
| 35 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 36 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.11.0 |
|
|
| aliases |
CVE-2023-51449, GHSA-6qm2-wpxq-7qh2, PYSEC-2023-249
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-uhjk-e9b3-cqea |
|
| 31 |
| url |
VCID-uvd9-43p8-suhm |
| vulnerability_id |
VCID-uvd9-43p8-suhm |
| summary |
Gradio Path Traversal vulnerability
A vulnerability in the gradio-app/gradio repository, version git 67e4044, allows for path traversal on Windows OS. The implementation of the blocked_path functionality, which is intended to disallow users from reading certain files, is flawed. Specifically, while the application correctly blocks access to paths like 'C:/tmp/secret.txt', it fails to block access when using NTFS Alternate Data Streams (ADS) syntax, such as 'C:/tmp/secret.txt::$DATA'. This flaw can lead to unauthorized reading of blocked file paths. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2024-12217, GHSA-prpg-p95c-32fv
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-uvd9-43p8-suhm |
|
| 32 |
| url |
VCID-vg49-znwv-akgf |
| vulnerability_id |
VCID-vg49-znwv-akgf |
| summary |
Gradio is an open-source Python package designed for quick prototyping. This is a **data validation vulnerability** affecting several Gradio components, which allows arbitrary file leaks through the post-processing step. Attackers can exploit these components by crafting requests that bypass expected input constraints. This issue could lead to sensitive files being exposed to unauthorized users, especially when combined with other vulnerabilities, such as issue TOB-GRADIO-15. The components most at risk are those that return or handle file data. Vulnerable Components: 1. **String to FileData:** DownloadButton, Audio, ImageEditor, Video, Model3D, File, UploadButton. 2. **Complex data to FileData:** Chatbot, MultimodalTextbox. 3. **Direct file read in preprocess:** Code. 4. **Dictionary converted to FileData:** ParamViewer, Dataset. Exploit Scenarios: 1. A developer creates a Dropdown list that passes values to a DownloadButton. An attacker bypasses the allowed inputs, sends an arbitrary file path (like `/etc/passwd`), and downloads sensitive files. 2. An attacker crafts a malicious payload in a ParamViewer component, leaking sensitive files from a server through the arbitrary file leak. This issue has been resolved in `gradio>5.0`. Upgrading to the latest version will mitigate this vulnerability. There are no known workarounds for this vulnerability. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
| reference_url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-4q3c-cj7g-jcwf |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 3 |
| value |
6.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 4 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 5 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 6 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-11T15:07:53Z/ |
|
|
| url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-4q3c-cj7g-jcwf |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@5.0.0 |
| purl |
pkg:pypi/gradio@5.0.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-372f-v9bc-tkah |
|
| 1 |
| vulnerability |
VCID-3cr8-jcqv-pkc6 |
|
| 2 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 3 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 4 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 5 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 6 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 7 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 8 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 9 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@5.0.0 |
|
|
| aliases |
CVE-2024-47868, GHSA-4q3c-cj7g-jcwf, PYSEC-2024-217
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vg49-znwv-akgf |
|
| 33 |
| url |
VCID-w575-2fgw-13bk |
| vulnerability_id |
VCID-w575-2fgw-13bk |
| summary |
Duplicate Advisory: Gradio Local File Inclusion vulnerability
## Duplicate Advisory
This advisory has been withdrawn because it is a duplicate of GHSA-m842-4qm8-7gpq. This link is maintained to preserve external references.
## Original Description
gradio-app/gradio is vulnerable to a local file inclusion vulnerability due to improper validation of user-supplied input in the UploadButton component. Attackers can exploit this vulnerability to read arbitrary files on the filesystem, such as private SSH keys, by manipulating the file path in the request to the `/queue/join` endpoint. This issue could potentially lead to remote code execution. The vulnerability is present in the handling of file upload paths, allowing attackers to redirect file uploads to unintended locations on the server. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.19.2 |
| purl |
pkg:pypi/gradio@4.19.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 7 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 8 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 9 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 10 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 11 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 12 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 13 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 14 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 15 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 16 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 17 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 18 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 19 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 20 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 21 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 22 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 23 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 24 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 25 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 26 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 27 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 28 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.19.2 |
|
|
| aliases |
GHSA-3f95-mxq2-2f63
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-w575-2fgw-13bk |
|
| 34 |
| url |
VCID-wep6-zfzs-jkfb |
| vulnerability_id |
VCID-wep6-zfzs-jkfb |
| summary |
Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a **one-level read path traversal** in the `/custom_component` endpoint. Attackers can exploit this flaw to access and leak source code from custom Gradio components by manipulating the file path in the request. Although the traversal is limited to a single directory level, it could expose proprietary or sensitive code that developers intended to keep private. This impacts users who have developed custom Gradio components and are hosting them on publicly accessible servers. Users are advised to upgrade to `gradio>=4.44` to address this issue. As a workaround, developers can sanitize the file paths and ensure that components are not stored in publicly accessible directories. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/U:Green |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
| reference_url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-37qc-qgx6-9xjv |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
MODERATE |
| scoring_system |
cvssv3.1_qr |
| scoring_elements |
|
|
| 2 |
| value |
2.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/U:Green |
|
| 4 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 5 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-11T15:26:33Z/ |
|
|
| url |
https://github.com/gradio-app/gradio/security/advisories/GHSA-37qc-qgx6-9xjv |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.44.0 |
| purl |
pkg:pypi/gradio@4.44.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 3 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 4 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 5 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 6 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 7 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 8 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 9 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 10 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 11 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 12 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 13 |
| vulnerability |
VCID-khkm-yeun-3qf3 |
|
| 14 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 15 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 16 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 17 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 18 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 19 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.44.0 |
|
|
| aliases |
CVE-2024-47166, GHSA-37qc-qgx6-9xjv, PYSEC-2024-197
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wep6-zfzs-jkfb |
|
| 35 |
| url |
VCID-wgzj-vqbt-yqcd |
| vulnerability_id |
VCID-wgzj-vqbt-yqcd |
| summary |
gradio Server-Side Request Forgery vulnerability
An SSRF (Server-Side Request Forgery) vulnerability exists in the gradio-app/gradio repository, allowing attackers to scan and identify open ports within an internal network. By manipulating the 'file' parameter in a GET request, an attacker can discern the status of internal ports based on the presence of a 'Location' header or a 'File not allowed' error in the response. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.10.0 |
| purl |
pkg:pypi/gradio@4.10.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-891h-rrw9-d3cx |
|
| 7 |
| vulnerability |
VCID-99va-f8e5-cbce |
|
| 8 |
| vulnerability |
VCID-9nyf-xj5e-yqdj |
|
| 9 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 10 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 11 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 12 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 13 |
| vulnerability |
VCID-e945-mbq6-pyc4 |
|
| 14 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 15 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 16 |
| vulnerability |
VCID-gbtq-hhrr-rkbm |
|
| 17 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 18 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 19 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 20 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 21 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 22 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 23 |
| vulnerability |
VCID-n8da-ed1s-9yhg |
|
| 24 |
| vulnerability |
VCID-qnyg-tuak-xkhe |
|
| 25 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 26 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 27 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 28 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 29 |
| vulnerability |
VCID-uhjk-e9b3-cqea |
|
| 30 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 31 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 32 |
| vulnerability |
VCID-w575-2fgw-13bk |
|
| 33 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 34 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 35 |
| vulnerability |
VCID-x165-3m21-x7en |
|
| 36 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 37 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.10.0 |
|
|
| aliases |
CVE-2024-1183, GHSA-qh6x-j82h-vpf9
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wgzj-vqbt-yqcd |
|
| 36 |
| url |
VCID-wz4t-9fnd-mbd7 |
| vulnerability_id |
VCID-wz4t-9fnd-mbd7 |
| summary |
Gradio Vulnerable to Open Redirect
An open redirect vulnerability exists in the latest version of gradio-app/gradio. The vulnerability allows an attacker to redirect users to a malicious website by URL encoding. This can be exploited by sending a crafted request to the application, which results in a 302 redirect to an attacker-controlled site. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.38.0 |
| purl |
pkg:pypi/gradio@4.38.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 7 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 8 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 9 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 10 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 11 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 12 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 13 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 14 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 15 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 16 |
| vulnerability |
VCID-khkm-yeun-3qf3 |
|
| 17 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 18 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 19 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 20 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 21 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 22 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 23 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 24 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.38.0 |
|
|
| aliases |
CVE-2024-8021, GHSA-7v2w-h4gh-w5cv
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wz4t-9fnd-mbd7 |
|
| 37 |
| url |
VCID-x165-3m21-x7en |
| vulnerability_id |
VCID-x165-3m21-x7en |
| summary |
Gradio apps vulnerable to timing attacks to guess password
### Impact
This security policy is with regards to a timing attack that allows users of Gradio apps to potentially guess the password of password-protected Gradio apps. This relies on the fact that string comparisons in Python terminate early, as soon as there is a string mismatch. Because Gradio apps are, by default, not rate-limited, a user could brute-force millions of guesses to figure out the correct username and password.
### Patches
Yes, the problem has been patched in Gradio version 4.19.2 or higher. We have no knowledge of this exploit being used against users of Gradio applications, but we encourage all users to upgrade to Gradio 4.19.2 or higher.
Fixed in: https://github.com/gradio-app/gradio/commit/e329f1fd38935213fe0e73962e8cbd5d3af6e87b |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.19.2 |
| purl |
pkg:pypi/gradio@4.19.2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 7 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 8 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 9 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 10 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 11 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 12 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 13 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 14 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 15 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 16 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 17 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 18 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 19 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 20 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 21 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 22 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 23 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 24 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 25 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 26 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 27 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 28 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.19.2 |
|
|
| aliases |
CVE-2024-1729, GHSA-hmx6-r76c-85g9
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-x165-3m21-x7en |
|
| 38 |
| url |
VCID-xmqj-f6q8-r3a6 |
| vulnerability_id |
VCID-xmqj-f6q8-r3a6 |
| summary |
gradio Server Side Request Forgery vulnerability
In gradio <=4.42.0, the gr.DownloadButton function has a hidden server-side request forgery (SSRF) vulnerability. The reason is that within the save_url_to_cache function, there are no restrictions on the URL, which allows access to local target resources. This can lead to the download of local resources and sensitive information. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
5.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.43.0 |
| purl |
pkg:pypi/gradio@4.43.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 7 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 8 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 9 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 10 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 11 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 12 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 13 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 14 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 15 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 16 |
| vulnerability |
VCID-khkm-yeun-3qf3 |
|
| 17 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 18 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 19 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 20 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 21 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 22 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 23 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.43.0 |
|
|
| aliases |
CVE-2024-48052, GHSA-3gf9-wv65-gwh9
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xmqj-f6q8-r3a6 |
|
| 39 |
| url |
VCID-znu2-s2vu-n3fb |
| vulnerability_id |
VCID-znu2-s2vu-n3fb |
| summary |
Gradio before 4.20 allows credential leakage on Windows. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://www.gradio.app/changelog#4-20-0 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AC:L/AV:N/A:N/C:H/I:N/PR:N/S:U/UI:N |
|
| 1 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 3 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-29T14:51:27Z/ |
|
|
| url |
https://www.gradio.app/changelog#4-20-0 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@4.20.0 |
| purl |
pkg:pypi/gradio@4.20.0 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 7 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 8 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 9 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 10 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 11 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 12 |
| vulnerability |
VCID-gg9e-fpxd-quh6 |
|
| 13 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 14 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 15 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 16 |
| vulnerability |
VCID-jevg-ta5g-u7gt |
|
| 17 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 18 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 19 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 20 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 21 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 22 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 23 |
| vulnerability |
VCID-vaq5-ccvf-kyg6 |
|
| 24 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 25 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 26 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 27 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@4.20.0 |
|
|
| aliases |
CVE-2024-34510, GHSA-rvfh-h6c7-fc3c, PYSEC-2024-255
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-znu2-s2vu-n3fb |
|
| 40 |
| url |
VCID-zy84-a8qv-mkdu |
| vulnerability_id |
VCID-zy84-a8qv-mkdu |
| summary |
Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio's share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users' shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users are recommended to update to 3.19.1 or later where the FRP solution has been properly tested. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/gradio-app/gradio |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L |
|
| 1 |
| value |
6.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:L/SA:L |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/gradio-app/gradio |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:pypi/gradio@3.13.1 |
| purl |
pkg:pypi/gradio@3.13.1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2ueu-3u8x-pkfs |
|
| 1 |
| vulnerability |
VCID-3w2j-55q7-t7by |
|
| 2 |
| vulnerability |
VCID-4ahq-tuj8-fkgc |
|
| 3 |
| vulnerability |
VCID-4y28-s547-c3d3 |
|
| 4 |
| vulnerability |
VCID-5c6u-kz54-a7ee |
|
| 5 |
| vulnerability |
VCID-6cys-sapp-9yh6 |
|
| 6 |
| vulnerability |
VCID-891h-rrw9-d3cx |
|
| 7 |
| vulnerability |
VCID-99va-f8e5-cbce |
|
| 8 |
| vulnerability |
VCID-9nyf-xj5e-yqdj |
|
| 9 |
| vulnerability |
VCID-aajd-8tqx-c3bn |
|
| 10 |
| vulnerability |
VCID-b15z-tjeb-gyeh |
|
| 11 |
| vulnerability |
VCID-bmqt-uegd-hyap |
|
| 12 |
| vulnerability |
VCID-dsw8-wy3z-53hm |
|
| 13 |
| vulnerability |
VCID-e945-mbq6-pyc4 |
|
| 14 |
| vulnerability |
VCID-ejg7-khk7-9qf3 |
|
| 15 |
| vulnerability |
VCID-g36q-9t77-nuc9 |
|
| 16 |
| vulnerability |
VCID-gbtq-hhrr-rkbm |
|
| 17 |
| vulnerability |
VCID-grp8-svdp-r7e6 |
|
| 18 |
| vulnerability |
VCID-h9ep-6qj7-pued |
|
| 19 |
| vulnerability |
VCID-j1w9-nvdf-nfbr |
|
| 20 |
| vulnerability |
VCID-mk15-qxqc-vfab |
|
| 21 |
| vulnerability |
VCID-n8da-ed1s-9yhg |
|
| 22 |
| vulnerability |
VCID-pfhr-s1pv-17bm |
|
| 23 |
| vulnerability |
VCID-q41h-dde2-93gc |
|
| 24 |
| vulnerability |
VCID-qnyg-tuak-xkhe |
|
| 25 |
| vulnerability |
VCID-s2en-q2qm-g7c7 |
|
| 26 |
| vulnerability |
VCID-t89m-72z1-a3cv |
|
| 27 |
| vulnerability |
VCID-u9tt-44vk-nyhg |
|
| 28 |
| vulnerability |
VCID-uew9-38g7-bqft |
|
| 29 |
| vulnerability |
VCID-uhjk-e9b3-cqea |
|
| 30 |
| vulnerability |
VCID-uvd9-43p8-suhm |
|
| 31 |
| vulnerability |
VCID-vg49-znwv-akgf |
|
| 32 |
| vulnerability |
VCID-w575-2fgw-13bk |
|
| 33 |
| vulnerability |
VCID-wep6-zfzs-jkfb |
|
| 34 |
| vulnerability |
VCID-wgzj-vqbt-yqcd |
|
| 35 |
| vulnerability |
VCID-wz4t-9fnd-mbd7 |
|
| 36 |
| vulnerability |
VCID-x165-3m21-x7en |
|
| 37 |
| vulnerability |
VCID-xmqj-f6q8-r3a6 |
|
| 38 |
| vulnerability |
VCID-znu2-s2vu-n3fb |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@3.13.1 |
|
|
| aliases |
CVE-2023-25823, GHSA-3x5j-9vwr-8rr5, PYSEC-2023-16
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zy84-a8qv-mkdu |
|
|
|---|