cbcvebase.

Gradio-App Gradio vulnerabilities

21 known vulnerabilities affecting gradio-app/gradio-app_gradio.

Total CVEs
21
CISA KEV
0
Public exploits
6
Exploited in wild
2
Severity breakdown
CRITICAL2HIGH12MEDIUM7

Vulnerabilities

Page 1 of 2
CVE-2024-4325P1HIGHCVSS 8.6ExploitedPoC≥ unspecified, ≤ latest2024-06-06
CVE-2024-4325 [HIGH] CWE-918 CVE-2024-4325: A Server-Side Request Forgery (SSRF) vulnerability exists in the gradio-app/gradio version 4.21.0, s A Server-Side Request Forgery (SSRF) vulnerability exists in the gradio-app/gradio version 4.21.0, specifically within the `/queue/join` endpoint and the `save_url_to_cache` function. The vulnerability arises when the `path` value, obtained from the user and expected to be a URL, is used to make an HTTP request without sufficient validation checks. This
nvd
CVE-2024-1561P1HIGHCVSS 7.5ExploitedPoC≥ unspecified, < 4.13.02024-04-16
CVE-2024-1561 [HIGH] CWE-29 CVE-2024-1561: An issue was discovered in gradio-app/gradio, where the `/component_server` endpoint improperly allo An issue was discovered in gradio-app/gradio, where the `/component_server` endpoint improperly allows the invocation of any method on a `Component` class with attacker-controlled arguments. Specifically, by exploiting the `move_resource_to_block_cache()` method of the `Block` class, an attacker can copy any file on the filesystem to a temporary director
nvd
CVE-2024-1728P2HIGHCVSS 7.5PoC≥ unspecified, < 4.19.22024-04-10
CVE-2024-1728 [HIGH] CWE-22 CVE-2024-1728: gradio-app/gradio is vulnerable to a local file inclusion vulnerability due to improper validation o gradio-app/gradio is vulnerable to a local file inclusion vulnerability due to improper validation of user-supplied input in the UploadButton component. Attackers can exploit this vulnerability to read arbitrary files on the filesystem, such as private SSH keys, by manipulating the file path in the request to the `/queue/join` endpoint. This issue could
nvd
CVE-2024-1183P3MEDIUMCVSS 6.5PoC≥ unspecified, < 4.112024-04-16
CVE-2024-1183 [MEDIUM] CWE-601 CVE-2024-1183: An SSRF (Server-Side Request Forgery) vulnerability exists in the gradio-app/gradio repository, allo An SSRF (Server-Side Request Forgery) vulnerability exists in the gradio-app/gradio repository, allowing attackers to scan and identify open ports within an internal network. By manipulating the 'file' parameter in a GET request, an attacker can discern the status of internal ports based on the presence of a 'Location' header or a 'File not allowed' e
nvd
CVE-2024-4253P3CRITICALCVSS 9.1≥ unspecified, < 4.29.02024-06-04
CVE-2024-4253 [CRITICAL] CWE-78 CVE-2024-4253: A command injection vulnerability exists in the gradio-app/gradio repository, specifically within th A command injection vulnerability exists in the gradio-app/gradio repository, specifically within the 'test-functional.yml' workflow. The vulnerability arises due to improper neutralization of special elements used in a command, allowing for unauthorized modification of the base repository or secrets exfiltration. The issue affects versions up to and
nvd
CVE-2024-4940P3MEDIUMCVSS 6.1PoC≥ unspecified, ≤ latest2024-06-22
CVE-2024-4940 [MEDIUM] CWE-601 CVE-2024-4940: An open redirect vulnerability exists in the gradio-app/gradio, affecting the latest version. The vu An open redirect vulnerability exists in the gradio-app/gradio, affecting the latest version. The vulnerability allows an attacker to redirect users to arbitrary websites, which can be exploited for phishing attacks, Cross-site Scripting (XSS), Server-Side Request Forgery (SSRF), amongst others. This issue is due to improper validation of user-supplie
nvd
CVE-2024-8021P3MEDIUMCVSS 6.1PoC≥ unspecified, ≤ latest2025-03-20
CVE-2024-8021 [MEDIUM] CWE-601 CVE-2024-8021: An open redirect vulnerability exists in the latest version of gradio-app/gradio. The vulnerability An open redirect vulnerability exists in the latest version of gradio-app/gradio. The vulnerability allows an attacker to redirect users to a malicious website by URL encoding. This can be exploited by sending a crafted request to the application, which results in a 302 redirect to an attacker-controlled site.
nvd
CVE-2024-0964P3CRITICALCVSS 9.4≥ unspecified, < x2024-02-05
CVE-2024-0964 [CRITICAL] CWE-22 CVE-2024-0964: A local file include could be remotely triggered in Gradio due to a vulnerable user-supplied JSON va A local file include could be remotely triggered in Gradio due to a vulnerable user-supplied JSON value in an API request.
nvd
CVE-2024-1540P3HIGHCVSS 8.2≥ unspecified, < N/A2024-03-27
CVE-2024-1540 [HIGH] CWE-77 CVE-2024-1540: A command injection vulnerability exists in the deploy+test-visual.yml workflow of the gradio-app/gr A command injection vulnerability exists in the deploy+test-visual.yml workflow of the gradio-app/gradio repository, due to improper neutralization of special elements used in a command. This vulnerability allows attackers to execute unauthorized commands, potentially leading to unauthorized modification of the base repository or secrets exfiltration. Th
nvd
CVE-2023-6572P3HIGHCVSS 8.1≥ unspecified, < main2023-12-14
CVE-2023-6572 [HIGH] CWE-77 CVE-2023-6572: Command Injection in GitHub repository gradio-app/gradio prior to main. Command Injection in GitHub repository gradio-app/gradio prior to main.
nvd
CVE-2024-10648P3HIGHCVSS 8.2≥ unspecified, ≤ latest2025-03-20
CVE-2024-10648 [HIGH] CWE-29 CVE-2024-10648: A path traversal vulnerability exists in the Gradio Audio component of gradio-app/gradio, as of vers A path traversal vulnerability exists in the Gradio Audio component of gradio-app/gradio, as of version git 98cbcae. This vulnerability allows an attacker to control the format of the audio file, leading to arbitrary file content deletion. By manipulating the output format, an attacker can reset any file to an empty file, causing a denial of service (D
nvd
CVE-2024-4941P3HIGHCVSS 7.5≥ unspecified, < 4.31.42024-06-06
CVE-2024-4941 [HIGH] CWE-22 CVE-2024-4941: A local file inclusion vulnerability exists in the JSON component of gradio-app/gradio version 4.25. A local file inclusion vulnerability exists in the JSON component of gradio-app/gradio version 4.25. The vulnerability arises from improper input validation in the `postprocess()` function within `gradio/components/json_component.py`, where a user-controlled string is parsed as JSON. If the parsed JSON object contains a `path` key, the specified file is
nvd
CVE-2024-10624P3HIGHCVSS 7.5≥ unspecified, ≤ latest2025-03-20
CVE-2024-10624 [HIGH] CWE-1333 CVE-2024-10624: A Regular Expression Denial of Service (ReDoS) vulnerability exists in the gradio-app/gradio reposit A Regular Expression Denial of Service (ReDoS) vulnerability exists in the gradio-app/gradio repository, affecting the gr.Datetime component. The affected version is git commit 98cbcae. The vulnerability arises from the use of a regular expression `^(?:\s*now\s*(?:-\s*(\d+)\s*([dmhs]))?)?\s*$` to process user input. In Python's default regex engine,
nvd
CVE-2025-0187P3HIGHCVSS 7.5≥ unspecified, ≤ latest2025-03-20
CVE-2025-0187 [HIGH] CWE-400 CVE-2025-0187: A Denial of Service (DoS) vulnerability was discovered in the file upload feature of gradio-app/grad A Denial of Service (DoS) vulnerability was discovered in the file upload feature of gradio-app/gradio version 0.39.1. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. By sending a payload with an excessively large filename, the server becomes overwhelmed and unresponsive, leading to unavailabi
nvd
CVE-2024-10569P3HIGHCVSS 7.5≥ unspecified, ≤ latest2025-03-20
CVE-2024-10569 [HIGH] CWE-475 CVE-2024-10569: A vulnerability in the dataframe component of gradio-app/gradio (version git 98cbcae) allows for a z A vulnerability in the dataframe component of gradio-app/gradio (version git 98cbcae) allows for a zip bomb attack. The component uses pd.read_csv to process input values, which can accept compressed files. An attacker can exploit this by uploading a maliciously crafted zip bomb, leading to a server crash and causing a denial of service.
nvd
CVE-2024-2206P3MEDIUMCVSS 6.5≥ unspecified, < 4.182024-03-27
CVE-2024-2206 [MEDIUM] CWE-918 CVE-2024-2206: An SSRF vulnerability exists in the gradio-app/gradio due to insufficient validation of user-supplie An SSRF vulnerability exists in the gradio-app/gradio due to insufficient validation of user-supplied URLs in the `/proxy` route. Attackers can exploit this vulnerability by manipulating the `self.replica_urls` set through the `X-Direct-Url` header in requests to the `/` and `/config` routes, allowing the addition of arbitrary URLs for proxying. This
nvd
CVE-2024-8966P3HIGHCVSS 7.5≥ unspecified, < 5.92025-03-20
CVE-2024-8966 [HIGH] CWE-770 CVE-2024-8966: A vulnerability in the file upload process of gradio-app/gradio version @gradio/[email protected] allows A vulnerability in the file upload process of gradio-app/gradio version @gradio/[email protected] allows for a Denial of Service (DoS) attack. An attacker can append a large number of characters to the end of a multipart boundary, causing the system to continuously process each character and issue warnings. This can render Gradio inaccessible for extended per
nvd
CVE-2024-4254P3HIGHCVSS 7.1≥ unspecified, ≤ latest2024-06-04
CVE-2024-4254 [HIGH] CWE-214 CVE-2024-4254: The 'deploy-website.yml' workflow in the gradio-app/gradio repository, specifically in the 'main' br The 'deploy-website.yml' workflow in the gradio-app/gradio repository, specifically in the 'main' branch, is vulnerable to secrets exfiltration due to improper authorization. The vulnerability arises from the workflow's explicit checkout and execution of code from a fork, which is unsafe as it allows the running of untrusted code in an environment with
nvd
CVE-2024-1729P3MEDIUMCVSS 5.9≥ unspecified, < 4.19.22024-03-29
CVE-2024-1729 [MEDIUM] CWE-367 CVE-2024-1729: A timing attack vulnerability exists in the gradio-app/gradio repository, specifically within the lo A timing attack vulnerability exists in the gradio-app/gradio repository, specifically within the login function in routes.py. The vulnerability arises from the use of a direct comparison operation (`app.auth[username] == password`) to validate user credentials, which can be exploited to guess passwords based on response times. Successful exploitation
nvd
CVE-2024-12217P4MEDIUMCVSS 5.3≥ unspecified, ≤ latest2025-03-20
CVE-2024-12217 [MEDIUM] CWE-22 CVE-2024-12217: A vulnerability in the gradio-app/gradio repository, version git 67e4044, allows for path traversal A vulnerability in the gradio-app/gradio repository, version git 67e4044, allows for path traversal on Windows OS. The implementation of the blocked_path functionality, which is intended to disallow users from reading certain files, is flawed. Specifically, while the application correctly blocks access to paths like 'C:/tmp/secret.txt', it fails to bl
nvd
Gradio-App Gradio vulnerabilities | cvebase