CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
58.6%
This is a vulnerability which affects anyone using Gradio’s share links (i.e. creating a Gradio app and then setting share=True
) with Gradio versions older than 3.13.1. In these older versions of Gradio, a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users’ shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides.
The problem has been patched. Ideally, users should upgrade to gradio==3.19.1
or later where the FRP solution has been properly tested.
Credit to Greg Sadetsky and Samuel Tremblay-Cossette for alerting the team
Vendor | Product | Version | CPE |
---|---|---|---|
gradio_project | gradio | * | cpe:2.3:a:gradio_project:gradio:*:*:*:*:*:python:*:* |