CVE-2023-51449

🗓️ 22 Dec 2023 21:09:15Reported by GoogleType

osv🔗 osv.dev👁 17 Views

Gradio 4.10.0 and earlier allows file traversal attack

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 17
NVD	CVE-2023-51449	22 Dec 202321:15	–	nvd
NVD	CVE-2024-3234	6 Jun 202419:16	–	nvd
CVE	CVE-2023-51449	22 Dec 202321:15	–	cve
CVE	CVE-2024-3234	6 Jun 202419:16	–	cve
OSV	PYSEC-2023-249	22 Dec 202321:15	–	osv
OSV	Gradio makes the `/file` secure against file traversal and server-side request forgery attacks	21 Dec 202318:24	–	osv
OSV	CVE-2024-3234	6 Jun 202419:16	–	osv
Cvelist	CVE-2023-51449 Make the `/file` secure against file traversal attacks	22 Dec 202320:58	–	cvelist
Cvelist	CVE-2024-3234 Path Traversal in gaizhenbiao/chuanhuchatgpt	6 Jun 202418:20	–	cvelist
Veracode	Path Traversal	22 Dec 202311:08	–	veracode

Source	Link
github	www.github.com/gradio-app/gradio/security/advisories/GHSA-6qm2-wpxq-7qh2
github	www.github.com/gradio-app/gradio/commit/1b9d4234d6c25ef250d882c7b90e1f4039ed2d76
github	www.github.com/gradio-app/gradio/commit/7ba8c5da45b004edd12c0460be9222f5b5f5f055

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Dec 2023 21:15Current

6.8Medium risk

Vulners AI Score6.8

CVSS35.6 - 7.5

EPSS0.82508

SSVC