CVE-2024-1728

nvd nist nuclei

Published: Apr 10, 2024Modified: Jul 30, 2025

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

gradio-app/gradio is vulnerable to a local file inclusion vulnerability due to improper validation of user-supplied input in the UploadButton component. Attackers can exploit this vulnerability to read arbitrary files on the filesystem, such as private SSH keys, by manipulating the file path in the request to the `/queue/join` endpoint. This issue could potentially lead to remote code execution. The vulnerability is present in the handling of file upload paths, allowing attackers to redirect file uploads to unintended locations on the server.

Affected (1)

Products: Gradio Project: Gradio

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Gradio Project Gradio	From 4.18.0 to 4.19.2

Related CWEs

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (4)

https://github.com/gradio-app/gradio/commit/16fbe9cd0cffa9f2a824a0165beb43446114eec7

Source: security@huntr.dev

Patch

https://huntr.com/bounties/9bb33b71-7995-425d-91cc-2c2a2f2a068a

Source: security@huntr.dev

ExploitThird Party Advisory

https://github.com/gradio-app/gradio/commit/16fbe9cd0cffa9f2a824a0165beb43446114eec7

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://huntr.com/bounties/9bb33b71-7995-425d-91cc-2c2a2f2a068a

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.