CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47166 – One-level read path traversal in `/custom_component` in Gradio
https://notcve.org/view.php?id=CVE-2024-47166
10 Oct 2024 — Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a **one-level read path traversal** in the `/custom_component` endpoint. Attackers can exploit this flaw to access and leak source code from custom Gradio components by manipulating the file path in the request. Although the traversal is limited to a single directory level, it could expose proprietary or sensitive code that developers intended to keep private. This impacts users who have developed custom Grad... • https://github.com/gradio-app/gradio/security/advisories/GHSA-37qc-qgx6-9xjv • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47167 – SSRF in the path parameter of /queue/join in Gradio
https://notcve.org/view.php?id=CVE-2024-47167
10 Oct 2024 — Gradio is an open-source Python package designed for quick prototyping. This vulnerability relates to **Server-Side Request Forgery (SSRF)** in the `/queue/join` endpoint. Gradio’s `async_save_url_to_cache` function allows attackers to force the Gradio server to send HTTP requests to user-controlled URLs. This could enable attackers to target internal servers or services within a local network and possibly exfiltrate data or cause unwanted internal requests. Additionally, the content from these URLs is stor... • https://github.com/gradio-app/gradio/security/advisories/GHSA-576c-3j53-r9jj • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47168 – The `enable_monitoring` flag set to `False` does not disable monitoring in Gradio
https://notcve.org/view.php?id=CVE-2024-47168
10 Oct 2024 — Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves data exposure due to the enable_monitoring flag not properly disabling monitoring when set to False. Even when monitoring is supposedly disabled, an attacker or unauthorized user can still access the monitoring dashboard by directly requesting the /monitoring endpoint. This means that sensitive application analytics may still be exposed, particularly in environments where monitoring is expected to be disabled... • https://github.com/gradio-app/gradio/security/advisories/GHSA-hm3c-93pg-4cxw • CWE-670: Always-Incorrect Control Flow Implementation •
CVSS: 7.8EPSS: 82%CPEs: 1EXPL: 0CVE-2023-51449 – Make the `/file` secure against file traversal attacks
https://notcve.org/view.php?id=CVE-2023-51449
22 Dec 2023 — Gradio is an open-source Python package that allows you to quickly build a demo or web application for your machine learning model, API, or any arbitary Python function. Versions of `gradio` prior to 4.11.0 contained a vulnerability in the `/file` route which made them susceptible to file traversal attacks in which an attacker could access arbitrary files on a machine running a Gradio app with a public URL (e.g. if the demo was created with `share=True`, or on Hugging Face Spaces) if they knew the path of f... • https://github.com/gradio-app/gradio/commit/1b9d4234d6c25ef250d882c7b90e1f4039ed2d76 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.6EPSS: 1%CPEs: 1EXPL: 1CVE-2023-6572 – Command Injection in gradio-app/gradio
https://notcve.org/view.php?id=CVE-2023-6572
14 Dec 2023 — Command Injection in GitHub repository gradio-app/gradio prior to main. Exposición de información confidencial a un actor no autorizado en el repositorio de GitHub gradio-app/gradio antes de main. • https://github.com/gradio-app/gradio/commit/5b5af1899dd98d63e1f9b48a93601c2db1f56520 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-41626
https://notcve.org/view.php?id=CVE-2023-41626
15 Sep 2023 — Gradio v3.27.0 was discovered to contain an arbitrary file upload vulnerability via the /upload interface. Se descubrió que Gradio v3.27.0 contenía una vulnerabilidad de carga de archivos arbitraria a través de la interfaz /upload. • https://gist.github.com/impose1/590472eb0544ef1ec36c8a5a40122adb • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-34239 – Unfiltered paths in gradio
https://notcve.org/view.php?id=CVE-2023-34239
07 Jun 2023 — Gradio is an open-source Python library that is used to build machine learning and data science. Due to a lack of path filtering Gradio does not properly restrict file access to users. Additionally Gradio does not properly restrict the what URLs are proxied. These issues have been addressed in version 3.34.0. Users are advised to upgrade. • https://github.com/gradio-app/gradio/pull/4370 • CWE-20: Improper Input Validation •