gradio@5.0.2 vulnerabilities

gradio is a Python library for easily interacting with trained machine learning models

Affected versions of this package are vulnerable to Directory Traversal due to the improper handling of file paths in the processing_utils.async_move_files_to_cache function. An attacker can read arbitrary files from the server by manipulating the file path input to bypass the security checks that are supposed to restrict file access to only those uploaded by a user.

Note:

This is only exploitable if the application uses the File or UploadButton components to upload files and echo/preview the content to the user.

Upgrade gradio to version 5.5.0 or higher.

gradio is a Python library for easily interacting with trained machine learning models

Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) due to no restrictions on the URL, in the save_url_to_cache function. An attacker can access and download local resources and sensitive information.

There is no fixed version for gradio.

gradio is a Python library for easily interacting with trained machine learning models

Affected versions of this package are vulnerable to Arbitrary Code Injection due to improper check of the input, when users generate pyi. An attacker can execute arbitrary code by supplying crafted input.

Note:

This vulnerability is disputed by the maintainer because the report is about a user attacking himself.

There is no fixed version for gradio.

gradio is a Python library for easily interacting with trained machine learning models

Affected versions of this package are vulnerable to Open Redirect via the file parameter. An attacker can scan and identify open ports within an internal network by discerning the status of internal ports based on the presence of a 'Location' header or a 'File not allowed' error in the response.

There is no fixed version for gradio.