CVE-2024-1540

Published: Mar 27, 2024Modified: Jul 30, 2025

8.2

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

Exploitability: 3.9 / Impact: 4.2

Source: NVD

Description

A command injection vulnerability exists in the deploy+test-visual.yml workflow of the gradio-app/gradio repository, due to improper neutralization of special elements used in a command. This vulnerability allows attackers to execute unauthorized commands, potentially leading to unauthorized modification of the base repository or secrets exfiltration. The issue arises from the unsafe handling of GitHub context information within a `run` operation, where expressions inside `${{ }}` are evaluated and substituted before script execution. Remediation involves setting untrusted input values to intermediate environment variables to prevent direct influence on script generation.

Affected (1)

Products: Gradio Project: Gradio

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Gradio Project Gradio	Before 2024-02-09

Related CWEs

Improper Neutralization of Special Elements used in a Command ('Command Injection')

The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.

References (4)

https://github.com/gradio-app/gradio/commit/d56bb28df80d8db1f33e4acf4f6b2c4f87cb8b28

Source: security@huntr.dev

Patch

https://huntr.com/bounties/0e39e974-9a66-476f-91f5-3f37abb03d77

Source: security@huntr.dev

ExploitThird Party Advisory

https://github.com/gradio-app/gradio/commit/d56bb28df80d8db1f33e4acf4f6b2c4f87cb8b28

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://huntr.com/bounties/0e39e974-9a66-476f-91f5-3f37abb03d77

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.