cbcvebase.
CVE-2026-28414
published 2026-02-27

CVE-2026-28414: Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.7, Gradio apps running on Window with Python 3.13+ are vulnerable to…

PriorityP181high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
3.09%
86.1th percentile
Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.7, Gradio apps running on Window with Python 3.13+ are vulnerable to an absolute path traversal issue that enables unauthenticated attackers to read arbitrary files from the file system. Python 3.13+ changed the definition of `os.path.isabs` so that root-relative paths like `/windows/win.ini` on Windows are no longer considered absolute paths, resulting in a vulnerability in Gradio's logic for joining paths safely. This can be exploited by unauthenticated attackers to read arbitrary files from the Gradio server, even when Gradio is set up with authentication. Version 6.7 fixes the issue.

Affected

3 ranges
VendorProductVersion rangeFixed in
gradio-appgradio< 6.76.7
gradio_projectgradio< 6.7.06.7.0
gradio_projectgradio>= 0 < 6.7.06.7.0

Detection & IOCsextracted from sources · hover to see the quote

path/static//windows/win.ini
path/windows/win.ini
  • Detect path traversal attempts targeting Gradio's /static/ endpoint using root-relative Windows paths (e.g. /static//windows/win.ini). A successful exploit returns HTTP 200 with content-type text/plain and body containing [fonts] and [extensions].
  • Fingerprint vulnerable Gradio instances by checking the root page for the JavaScript globals window.gradio_config and __gradio_mode__ in the response body.
  • The vulnerability is exploitable only on Windows hosts running Python 3.13+ because Python 3.13 changed os.path.isabs so that root-relative paths like /windows/win.ini are no longer considered absolute, bypassing Gradio's safe path-join logic.
  • The attack requires no authentication and bypasses even Gradio deployments configured with authentication.
  • ·Vulnerability only affects Gradio versions prior to 6.7 running on Windows with Python 3.13 or later. Linux/macOS deployments are not affected because os.path.isabs behaves differently on those platforms.
  • ·Version 6.7 is the fixed release; upgrading to 6.7 or later fully remediates the issue.

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
vulncheck7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.