CVE-2024-4325

HIGH8.6EPSS 65.1%

Server-Side Request Forgery in gradio

發布日:2024/6/6修改日:2024/6/6

描述

A Server-Side Request Forgery (SSRF) vulnerability exists in the gradio-app/gradio and was discovered in version 4.21.0, specifically within the `/queue/join` endpoint and the `save_url_to_cache` function. The vulnerability arises when the `path` value, obtained from the user and expected to be a URL, is used to make an HTTP request without sufficient validation checks. This flaw allows an attacker to send crafted requests that could lead to unauthorized access to the local network or the AWS metadata endpoint, thereby compromising the security of internal servers.

受影響套件(1)

PyPI/gradiofrom 0, <= 4.36.0

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	HIGH8.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

參考連結(4)

ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2024-4325
PATCHhttps://github.com/gradio-app/gradio
WEBhttps://github.com/gradio-app/gradio/pull/8301
WEBhttps://huntr.com/bounties/b34f084b-7d14-4f00-bc10-048a3a5aaf88