{"url":"http://public2.vulnerablecode.io/api/packages/90866?format=json","purl":"pkg:pypi/gradio@5.14.0","type":"pypi","namespace":"","name":"gradio","version":"5.14.0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"6.7.0","latest_non_vulnerable_version":"6.7.0","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/69197?format=json","vulnerability_id":"VCID-aey9-dexr-aqa8","summary":"Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.7, Gradio apps running on Window with Python 3.13+ are vulnerable to an absolute path traversal issue that enables unauthenticated attackers to read arbitrary files from the file system. Python 3.13+ changed the definition of `os.path.isabs` so that root-relative paths like `/windows/win.ini` on Windows are no longer considered absolute paths, resulting in a vulnerability in Gradio's logic for joining paths safely. This can be exploited by unauthenticated attackers to read arbitrary files from the Gradio server, even when Gradio is set up with authentication. Version 6.7 fixes the issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-28414","reference_id":"","reference_type":"","scores":[{"value":"0.04212","scoring_system":"epss","scoring_elements":"0.88993","published_at":"2026-06-11T12:55:00Z"},{"value":"0.04212","scoring_system":"epss","scoring_elements":"0.89038","published_at":"2026-06-14T12:55:00Z"},{"value":"0.04212","scoring_system":"epss","scoring_elements":"0.89039","published_at":"2026-06-13T12:55:00Z"},{"value":"0.04212","scoring_system":"epss","scoring_elements":"0.89031","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-28414"},{"reference_url":"https://github.com/gradio-app/gradio","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio"},{"reference_url":"https://github.com/gradio-app/gradio/commit/6011b00d0154b85532fa901dd73cf8fa7d86fd04","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio/commit/6011b00d0154b85532fa901dd73cf8fa7d86fd04"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/gradio/PYSEC-2026-64.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/gradio/PYSEC-2026-64.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-28414","reference_id":"CVE-2026-28414","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-28414"},{"reference_url":"https://github.com/advisories/GHSA-39mp-8hj3-5c49","reference_id":"GHSA-39mp-8hj3-5c49","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-39mp-8hj3-5c49"},{"reference_url":"https://github.com/gradio-app/gradio/security/advisories/GHSA-39mp-8hj3-5c49","reference_id":"GHSA-39mp-8hj3-5c49","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-02T22:02:06Z/"}],"url":"https://github.com/gradio-app/gradio/security/advisories/GHSA-39mp-8hj3-5c49"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/40011?format=json","purl":"pkg:pypi/gradio@6.7.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@6.7.0"}],"aliases":["CVE-2026-28414","GHSA-39mp-8hj3-5c49","PYSEC-2026-64"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-aey9-dexr-aqa8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/69397?format=json","vulnerability_id":"VCID-hh8v-6v4d-2fdy","summary":"Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.6.0, the _redirect_to_target() function in Gradio's OAuth flow accepts an unvalidated _target_url query parameter, allowing redirection to arbitrary external URLs. This affects the /logout and /login/callback endpoints on Gradio apps with OAuth enabled (i.e. apps running on Hugging Face Spaces with gr.LoginButton). Starting in version 6.6.0, the _target_url parameter is sanitized to only use the path, query, and fragment, stripping any scheme or host.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28415.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28415.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-28415","reference_id":"","reference_type":"","scores":[{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02158","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02148","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02153","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02149","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-28415"},{"reference_url":"https://github.com/gradio-app/gradio","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio"},{"reference_url":"https://github.com/gradio-app/gradio/commit/dfee0da06d0aa94b3c2684131e7898d5d5c1911e","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio/commit/dfee0da06d0aa94b3c2684131e7898d5d5c1911e"},{"reference_url":"https://github.com/gradio-app/gradio/releases/tag/gradio%406.6.0","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio/releases/tag/gradio%406.6.0"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/gradio/PYSEC-2026-65.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/gradio/PYSEC-2026-65.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2443449","reference_id":"2443449","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2443449"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-28415","reference_id":"CVE-2026-28415","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-28415"},{"reference_url":"https://github.com/advisories/GHSA-pfjf-5gxr-995x","reference_id":"GHSA-pfjf-5gxr-995x","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-pfjf-5gxr-995x"},{"reference_url":"https://github.com/gradio-app/gradio/security/advisories/GHSA-pfjf-5gxr-995x","reference_id":"GHSA-pfjf-5gxr-995x","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-02T21:55:30Z/"}],"url":"https://github.com/gradio-app/gradio/security/advisories/GHSA-pfjf-5gxr-995x"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/40008?format=json","purl":"pkg:pypi/gradio@6.6.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-aey9-dexr-aqa8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@6.6.0"}],"aliases":["CVE-2026-28415","GHSA-pfjf-5gxr-995x","PYSEC-2026-65"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hh8v-6v4d-2fdy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/99291?format=json","vulnerability_id":"VCID-jqwz-jr66-yqaz","summary":"A vulnerability classified as problematic has been found in gradio-app gradio up to 5.29.1. This affects the function is_valid_origin of the component CORS Handler. The manipulation of the argument localhost_aliases leads to erweiterte Rechte. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-5320","reference_id":"","reference_type":"","scores":[{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29016","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.2903","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.29011","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28809","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-5320"},{"reference_url":"https://github.com/gradio-app/gradio","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"2.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-5320","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"2.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-5320"},{"reference_url":"https://gist.github.com/superboy-zjc/aa3dfa161d7b19d8a53ab4605792f2fe","reference_id":"aa3dfa161d7b19d8a53ab4605792f2fe","reference_type":"","scores":[{"value":"2.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:N/I:P/A:N"},{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"2.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-29T13:43:51Z/"}],"url":"https://gist.github.com/superboy-zjc/aa3dfa161d7b19d8a53ab4605792f2fe"},{"reference_url":"https://gist.github.com/superboy-zjc/aa3dfa161d7b19d8a53ab4605792f2fe#proof-of-concept-poc","reference_id":"aa3dfa161d7b19d8a53ab4605792f2fe#proof-of-concept-poc","reference_type":"","scores":[{"value":"2.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:N/I:P/A:N"},{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"2.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-29T13:43:51Z/"}],"url":"https://gist.github.com/superboy-zjc/aa3dfa161d7b19d8a53ab4605792f2fe#proof-of-concept-poc"},{"reference_url":"https://vuldb.com/?ctiid.310491","reference_id":"?ctiid.310491","reference_type":"","scores":[{"value":"2.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:N/I:P/A:N"},{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"2.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-29T13:43:51Z/"}],"url":"https://vuldb.com/?ctiid.310491"},{"reference_url":"https://github.com/advisories/GHSA-wmjh-cpqj-4v6x","reference_id":"GHSA-wmjh-cpqj-4v6x","reference_type":"","scores":[{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-wmjh-cpqj-4v6x"},{"reference_url":"https://vuldb.com/?id.310491","reference_id":"?id.310491","reference_type":"","scores":[{"value":"2.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:N/I:P/A:N"},{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"2.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-29T13:43:51Z/"}],"url":"https://vuldb.com/?id.310491"},{"reference_url":"https://vuldb.com/?submit.580250","reference_id":"?submit.580250","reference_type":"","scores":[{"value":"2.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:N/I:P/A:N"},{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"2.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P"},{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-29T13:43:51Z/"}],"url":"https://vuldb.com/?submit.580250"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87722?format=json","purl":"pkg:pypi/gradio@5.30.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-aey9-dexr-aqa8"},{"vulnerability":"VCID-hh8v-6v4d-2fdy"},{"vulnerability":"VCID-njwh-mk7u-yucv"},{"vulnerability":"VCID-vvn9-wgp2-q7ag"},{"vulnerability":"VCID-yztr-6wbj-jueb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@5.30.0"}],"aliases":["CVE-2025-5320","GHSA-wmjh-cpqj-4v6x"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jqwz-jr66-yqaz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/69167?format=json","vulnerability_id":"VCID-njwh-mk7u-yucv","summary":"Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.6.0, a Server-Side Request Forgery (SSRF) vulnerability in Gradio allows an attacker to make arbitrary HTTP requests from a victim's server by hosting a malicious Gradio Space. When a victim application uses `gr.load()` to load an attacker-controlled Space, the malicious `proxy_url` from the config is trusted and added to the allowlist, enabling the attacker to access internal services, cloud metadata endpoints, and private networks through the victim's infrastructure. Version 6.6.0 fixes the issue.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28416.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28416.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-28416","reference_id":"","reference_type":"","scores":[{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04783","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04793","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04807","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04803","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-28416"},{"reference_url":"https://github.com/gradio-app/gradio","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio"},{"reference_url":"https://github.com/gradio-app/gradio/commit/fc7c01ea1e581ef70be98fddf003b0c91315c7cc","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio/commit/fc7c01ea1e581ef70be98fddf003b0c91315c7cc"},{"reference_url":"https://github.com/gradio-app/gradio/releases/tag/gradio%406.6.0","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio/releases/tag/gradio%406.6.0"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/gradio/PYSEC-2026-66.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/gradio/PYSEC-2026-66.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2443453","reference_id":"2443453","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2443453"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-28416","reference_id":"CVE-2026-28416","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-28416"},{"reference_url":"https://github.com/advisories/GHSA-jmh7-g254-2cq9","reference_id":"GHSA-jmh7-g254-2cq9","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-jmh7-g254-2cq9"},{"reference_url":"https://github.com/gradio-app/gradio/security/advisories/GHSA-jmh7-g254-2cq9","reference_id":"GHSA-jmh7-g254-2cq9","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"},{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-02T21:59:31Z/"}],"url":"https://github.com/gradio-app/gradio/security/advisories/GHSA-jmh7-g254-2cq9"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/40008?format=json","purl":"pkg:pypi/gradio@6.6.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-aey9-dexr-aqa8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@6.6.0"}],"aliases":["CVE-2026-28416","GHSA-jmh7-g254-2cq9","PYSEC-2026-66"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-njwh-mk7u-yucv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34699?format=json","vulnerability_id":"VCID-v32z-9xvk-9bcu","summary":"A vulnerability in the file upload process of gradio-app/gradio version @gradio/video@0.10.2 allows for a Denial of Service (DoS) attack. An attacker can append a large number of characters to the end of a multipart boundary, causing the system to continuously process each character and issue warnings. This can render Gradio inaccessible for extended periods, disrupting services and causing significant downtime.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-8966","reference_id":"","reference_type":"","scores":[{"value":"0.0029","scoring_system":"epss","scoring_elements":"0.52917","published_at":"2026-06-13T12:55:00Z"},{"value":"0.0029","scoring_system":"epss","scoring_elements":"0.529","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0029","scoring_system":"epss","scoring_elements":"0.52774","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0029","scoring_system":"epss","scoring_elements":"0.52903","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-8966"},{"reference_url":"https://github.com/gradio-app/gradio","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio"},{"reference_url":"https://github.com/gradio-app/gradio/commit/f1718c47137f9c60240da7afe5e3290aa0f1cb47","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio/commit/f1718c47137f9c60240da7afe5e3290aa0f1cb47"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-8966","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-8966"},{"reference_url":"https://huntr.com/bounties/7b5932bb-58d1-4e71-b85c-43dc40522ff2","reference_id":"7b5932bb-58d1-4e71-b85c-43dc40522ff2","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-20T15:50:36Z/"}],"url":"https://huntr.com/bounties/7b5932bb-58d1-4e71-b85c-43dc40522ff2"},{"reference_url":"https://github.com/advisories/GHSA-5cpq-9538-jm2j","reference_id":"GHSA-5cpq-9538-jm2j","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5cpq-9538-jm2j"}],"fixed_packages":[],"aliases":["CVE-2024-8966","GHSA-5cpq-9538-jm2j"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v32z-9xvk-9bcu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79832?format=json","vulnerability_id":"VCID-vvn9-wgp2-q7ag","summary":"Gradio is an open-source Python package designed for quick prototyping. Starting in version 4.16.0 and prior to version 6.6.0, Gradio applications running outside of Hugging Face Spaces automatically enable \"mocked\" OAuth routes when OAuth components (e.g. `gr.LoginButton`) are used. When a user visits `/login/huggingface`, the server retrieves its own Hugging Face access token via `huggingface_hub.get_token()` and stores it in the visitor's session cookie. If the application is network-accessible, any remote attacker can trigger this flow to steal the server owner's HF token. The session cookie is signed with a hardcoded secret derived from the string `\"-v4\"`, making the payload trivially decodable. Version 6.6.0 fixes the issue.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27167.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-27167.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-27167","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08804","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08813","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08807","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08766","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-27167"},{"reference_url":"https://github.com/gradio-app/gradio","reference_id":"","reference_type":"","scores":[{"value":"0.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio"},{"reference_url":"https://github.com/gradio-app/gradio/commit/dfee0da06d0aa94b3c2684131e7898d5d5c1911e","reference_id":"","reference_type":"","scores":[{"value":"0.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio/commit/dfee0da06d0aa94b3c2684131e7898d5d5c1911e"},{"reference_url":"https://github.com/gradio-app/gradio/releases/tag/gradio@6.6.0","reference_id":"","reference_type":"","scores":[{"value":"0.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio/releases/tag/gradio@6.6.0"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/gradio/PYSEC-2026-63.yaml","reference_id":"","reference_type":"","scores":[{"value":"0.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/gradio/PYSEC-2026-63.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2443454","reference_id":"2443454","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2443454"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-27167","reference_id":"CVE-2026-27167","reference_type":"","scores":[{"value":"0.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-27167"},{"reference_url":"https://github.com/advisories/GHSA-h3h8-3v2v-rg7m","reference_id":"GHSA-h3h8-3v2v-rg7m","reference_type":"","scores":[{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-h3h8-3v2v-rg7m"},{"reference_url":"https://github.com/gradio-app/gradio/security/advisories/GHSA-h3h8-3v2v-rg7m","reference_id":"GHSA-h3h8-3v2v-rg7m","reference_type":"","scores":[{"value":"0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"},{"value":"0.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N"},{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-02T22:02:38Z/"}],"url":"https://github.com/gradio-app/gradio/security/advisories/GHSA-h3h8-3v2v-rg7m"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/40008?format=json","purl":"pkg:pypi/gradio@6.6.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-aey9-dexr-aqa8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@6.6.0"}],"aliases":["CVE-2026-27167","GHSA-h3h8-3v2v-rg7m","PYSEC-2026-63"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vvn9-wgp2-q7ag"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/118072?format=json","vulnerability_id":"VCID-yztr-6wbj-jueb","summary":"Gradio is an open-source Python package that allows quick building of demos and web application for machine learning models, API, or any arbitrary Python function. Prior to version 5.31.0, an arbitrary file copy vulnerability in Gradio's flagging feature allows unauthenticated attackers to copy any readable file from the server's filesystem. While attackers can't read these copied files, they can cause DoS by copying large files (like /dev/urandom) to fill disk space. This issue has been patched in version 5.31.0.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-48889","reference_id":"","reference_type":"","scores":[{"value":"0.01469","scoring_system":"epss","scoring_elements":"0.81403","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01469","scoring_system":"epss","scoring_elements":"0.81334","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01469","scoring_system":"epss","scoring_elements":"0.81395","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-48889"},{"reference_url":"https://github.com/gradio-app/gradio","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/gradio-app/gradio"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/gradio/PYSEC-2025-119.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/gradio/PYSEC-2025-119.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-48889","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2025-48889"},{"reference_url":"https://github.com/advisories/GHSA-8jw3-6x8j-v96g","reference_id":"GHSA-8jw3-6x8j-v96g","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-8jw3-6x8j-v96g"},{"reference_url":"https://github.com/gradio-app/gradio/security/advisories/GHSA-8jw3-6x8j-v96g","reference_id":"GHSA-8jw3-6x8j-v96g","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-30T12:25:32Z/"}],"url":"https://github.com/gradio-app/gradio/security/advisories/GHSA-8jw3-6x8j-v96g"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87723?format=json","purl":"pkg:pypi/gradio@5.31.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-aey9-dexr-aqa8"},{"vulnerability":"VCID-hh8v-6v4d-2fdy"},{"vulnerability":"VCID-njwh-mk7u-yucv"},{"vulnerability":"VCID-vvn9-wgp2-q7ag"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@5.31.0"}],"aliases":["CVE-2025-48889","GHSA-8jw3-6x8j-v96g","PYSEC-2025-119"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yztr-6wbj-jueb"}],"fixing_vulnerabilities":[],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/gradio@5.14.0"}