Lucene search
China National Vulnerability DatabaseCNVD-2021-103508HistoryDec 17, 2021 - 12:00 a.m.
Gradio path traversal vulnerability
2021-12-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
13
0.006 Low
EPSS
Percentile
79.1%
Gradio is an open source Python library that is a way to demonstrate machine learning models through a friendly web interface. versions of Gradio prior to 2.5.0 have a path traversal vulnerability that can be exploited by an attacker to access any file on the host.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gradio gradio | lt | 2.5.0 |
Related
cve
cve
CVE-2021-43831
2021-12-15 20:15:08
cvelist
cvelist
nuclei
nuclei
Gradio < 2.5.0 - Arbitrary File Read
2024-06-15 12:43:59
veracode
veracode
Path Traversal
2021-12-16 04:58:38
osv
osv
CVE-2021-43831
2021-12-15 20:15:08
Files on the host computer can be accessed from the Gradio interface
2022-01-21 23:43:33
PYSEC-2021-873
2021-12-15 20:15:00
github
github
Files on the host computer can be accessed from the Gradio interface
2022-01-21 23:43:33
nvd
nvd
CVE-2021-43831
2021-12-15 20:15:08
prion
prion
Design/Logic Flaw
2021-12-15 20:15:00