CVSS: 9.4EPSS: 0%CPEs: 1EXPL: 1CVE-2024-0964 – LFI in Gradio
https://notcve.org/view.php?id=CVE-2024-0964
A local file include could be remotely triggered in Gradio due to a vulnerable user-supplied JSON value in an API request. La inclusión de un archivo local podría activarse de forma remota en Gradio debido a un valor JSON vulnerable proporcionado por el usuario en una solicitud de API. • https://github.com/gradio-app/gradio/commit/d76bcaaaf0734aaf49a680f94ea9d4d22a602e70 https://huntr.com/bounties/25e25501-5918-429c-8541-88832dfd3741 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 6%CPEs: 1EXPL: 0CVE-2023-51449 – Make the `/file` secure against file traversal attacks
https://notcve.org/view.php?id=CVE-2023-51449
Gradio is an open-source Python package that allows you to quickly build a demo or web application for your machine learning model, API, or any arbitary Python function. Versions of `gradio` prior to 4.11.0 contained a vulnerability in the `/file` route which made them susceptible to file traversal attacks in which an attacker could access arbitrary files on a machine running a Gradio app with a public URL (e.g. if the demo was created with `share=True`, or on Hugging Face Spaces) if they knew the path of files to look for. This issue has been patched in version 4.11.0. Gradio es un paquete Python de código abierto que le permite crear rápidamente una demostración o una aplicación web para su modelo de aprendizaje automático, API o cualquier función arbitraria de Python. Las versiones de `gradio` anteriores a la 4.11.0 contenían una vulnerabilidad en la ruta `/file` que las hacía susceptibles a ataques transversales de archivos en los que un atacante podía acceder a archivos arbitrarios en una máquina que ejecutaba una aplicación Gradio con una URL pública (por ejemplo, si la demostración se creó con `share=True`, o en Hugging Face Spaces) si conocían la ruta de los archivos a buscar. • https://github.com/gradio-app/gradio/commit/1b9d4234d6c25ef250d882c7b90e1f4039ed2d76 https://github.com/gradio-app/gradio/commit/7ba8c5da45b004edd12c0460be9222f5b5f5f055 https://github.com/gradio-app/gradio/security/advisories/GHSA-6qm2-wpxq-7qh2 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.6EPSS: 0%CPEs: 1EXPL: 1CVE-2023-6572 – Command Injection in gradio-app/gradio
https://notcve.org/view.php?id=CVE-2023-6572
Command Injection in GitHub repository gradio-app/gradio prior to main. Exposición de información confidencial a un actor no autorizado en el repositorio de GitHub gradio-app/gradio antes de main. • https://github.com/gradio-app/gradio/commit/5b5af1899dd98d63e1f9b48a93601c2db1f56520 https://huntr.com/bounties/21d2ff0c-d43a-4afd-bb4d-049ee8da5b5c • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-41626
https://notcve.org/view.php?id=CVE-2023-41626
Gradio v3.27.0 was discovered to contain an arbitrary file upload vulnerability via the /upload interface. Se descubrió que Gradio v3.27.0 contenía una vulnerabilidad de carga de archivos arbitraria a través de la interfaz /upload. • https://gist.github.com/impose1/590472eb0544ef1ec36c8a5a40122adb • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2023-34239 – Unfiltered paths in gradio
https://notcve.org/view.php?id=CVE-2023-34239
Gradio is an open-source Python library that is used to build machine learning and data science. Due to a lack of path filtering Gradio does not properly restrict file access to users. Additionally Gradio does not properly restrict the what URLs are proxied. These issues have been addressed in version 3.34.0. Users are advised to upgrade. • https://github.com/gradio-app/gradio/pull/4370 https://github.com/gradio-app/gradio/pull/4406 https://github.com/gradio-app/gradio/security/advisories/GHSA-3qqg-pgqq-3695 • CWE-20: Improper Input Validation •