CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47166 – One-level read path traversal in `/custom_component` in Gradio
https://notcve.org/view.php?id=CVE-2024-47166
10 Oct 2024 — Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a **one-level read path traversal** in the `/custom_component` endpoint. Attackers can exploit this flaw to access and leak source code from custom Gradio components by manipulating the file path in the request. Although the traversal is limited to a single directory level, it could expose proprietary or sensitive code that developers intended to keep private. This impacts users who have developed custom Grad... • https://github.com/gradio-app/gradio/security/advisories/GHSA-37qc-qgx6-9xjv • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47167 – SSRF in the path parameter of /queue/join in Gradio
https://notcve.org/view.php?id=CVE-2024-47167
10 Oct 2024 — Gradio is an open-source Python package designed for quick prototyping. This vulnerability relates to **Server-Side Request Forgery (SSRF)** in the `/queue/join` endpoint. Gradio’s `async_save_url_to_cache` function allows attackers to force the Gradio server to send HTTP requests to user-controlled URLs. This could enable attackers to target internal servers or services within a local network and possibly exfiltrate data or cause unwanted internal requests. Additionally, the content from these URLs is stor... • https://github.com/gradio-app/gradio/security/advisories/GHSA-576c-3j53-r9jj • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-47168 – The `enable_monitoring` flag set to `False` does not disable monitoring in Gradio
https://notcve.org/view.php?id=CVE-2024-47168
10 Oct 2024 — Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves data exposure due to the enable_monitoring flag not properly disabling monitoring when set to False. Even when monitoring is supposedly disabled, an attacker or unauthorized user can still access the monitoring dashboard by directly requesting the /monitoring endpoint. This means that sensitive application analytics may still be exposed, particularly in environments where monitoring is expected to be disabled... • https://github.com/gradio-app/gradio/security/advisories/GHSA-hm3c-93pg-4cxw • CWE-670: Always-Incorrect Control Flow Implementation •
CVSS: 7.8EPSS: 31%CPEs: 1EXPL: 0CVE-2023-51449 – Make the `/file` secure against file traversal attacks
https://notcve.org/view.php?id=CVE-2023-51449
22 Dec 2023 — Gradio is an open-source Python package that allows you to quickly build a demo or web application for your machine learning model, API, or any arbitary Python function. Versions of `gradio` prior to 4.11.0 contained a vulnerability in the `/file` route which made them susceptible to file traversal attacks in which an attacker could access arbitrary files on a machine running a Gradio app with a public URL (e.g. if the demo was created with `share=True`, or on Hugging Face Spaces) if they knew the path of f... • https://github.com/gradio-app/gradio/commit/1b9d4234d6c25ef250d882c7b90e1f4039ed2d76 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.6EPSS: 2%CPEs: 1EXPL: 1CVE-2023-6572 – Command Injection in gradio-app/gradio
https://notcve.org/view.php?id=CVE-2023-6572
14 Dec 2023 — Command Injection in GitHub repository gradio-app/gradio prior to main. Exposición de información confidencial a un actor no autorizado en el repositorio de GitHub gradio-app/gradio antes de main. • https://github.com/gradio-app/gradio/commit/5b5af1899dd98d63e1f9b48a93601c2db1f56520 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-41626
https://notcve.org/view.php?id=CVE-2023-41626
15 Sep 2023 — Gradio v3.27.0 was discovered to contain an arbitrary file upload vulnerability via the /upload interface. Se descubrió que Gradio v3.27.0 contenía una vulnerabilidad de carga de archivos arbitraria a través de la interfaz /upload. • https://gist.github.com/impose1/590472eb0544ef1ec36c8a5a40122adb • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-34239 – Unfiltered paths in gradio
https://notcve.org/view.php?id=CVE-2023-34239
07 Jun 2023 — Gradio is an open-source Python library that is used to build machine learning and data science. Due to a lack of path filtering Gradio does not properly restrict file access to users. Additionally Gradio does not properly restrict the what URLs are proxied. These issues have been addressed in version 3.34.0. Users are advised to upgrade. • https://github.com/gradio-app/gradio/pull/4370 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-25823 – Gradio contains Use of Hard-coded Credentials
https://notcve.org/view.php?id=CVE-2023-25823
23 Feb 2023 — Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio's share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users' shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app pr... • https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5 • CWE-798: Use of Hard-coded Credentials •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-24770 – Improper Neutralization of Formula Elements in a CSV File in Gradio Flagging
https://notcve.org/view.php?id=CVE-2022-24770
17 Mar 2022 — `gradio` is an open source framework for building interactive machine learning models and demos. Prior to version 2.8.11, `gradio` suffers from Improper Neutralization of Formula Elements in a CSV File. The `gradio` library has a flagging functionality which saves input/output data into a CSV file on the developer's computer. This can allow a user to save arbitrary text into the CSV file, such as commands. If a program like MS Excel opens such a file, then it automatically runs these commands, which could l... • https://github.com/gradio-app/gradio/commit/80fea89117358ee105973453fdc402398ae20239 • CWE-1236: Improper Neutralization of Formula Elements in a CSV File •
CVSS: 7.7EPSS: 30%CPEs: 1EXPL: 1CVE-2021-43831 – Files on the host computer can be accessed from the Gradio interface
https://notcve.org/view.php?id=CVE-2021-43831
15 Dec 2021 — Gradio is an open source framework for building interactive machine learning models and demos. In versions prior to 2.5.0 there is a vulnerability that affects anyone who creates and publicly shares Gradio interfaces. File paths are not restricted and users who receive a Gradio link can access any files on the host computer if they know the file names or file paths. This is limited only by the host operating system. Paths are opened in read only mode. • https://github.com/gradio-app/gradio/commit/41bd3645bdb616e1248b2167ca83636a2653f781 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •