Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:42 a.m.10 views

CVE-2024-47870

Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a race condition in the updaterootinconfig function, allowing an attacker to modify the root URL used by the Gradio frontend to communicate with the backend. By exploiting this flaw, an attacker ca...

8.1CVSS6.7AI score0.00359EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/10/12 2:48 a.m.4 views

SUSE CVE-2024-47870

Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a race condition in the updaterootinconfig function, allowing an attacker to modify the root URL used by the Gradio frontend to communicate with the backend. By exploiting this flaw, an attacker ca...

8.1CVSS6.8AI score0.00359EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2024/10/10 11:15 p.m.4 views

academic-chatgpt (>=0.3.0 <=0.4.1), africanwhisper (>=0.2.1 <=0.9.0) +316 more potentially affected by CVE-2024-47870 via gradio (>=1.7.7 <=4.8.0)

gradio PYPI version =1.7.7, =0.3.0, =0.2.1, =0.1.5, =0.0.6, =0.0.2, =0.1.0, =0.8.11, =0.4.0, =0.0.4, =0.7.0.dev134, =0.7.0.dev143 - anymodality =0.1.0 - apillava =0.1.0 and more Source cves: CVE-2024-47870 Source advisory: OSV:PYSEC-2024-218...

8.1CVSS5.7AI score0.00359EPSS
Exploits0
NVD
NVD
added 2024/10/10 11:15 p.m.13 views

CVE-2024-47870

Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a race condition in the updaterootinconfig function, allowing an attacker to modify the root URL used by the Gradio frontend to communicate with the backend. By exploiting this flaw, an attacker ca...

8.1CVSS0.00359EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/10 10:15 p.m.16 views

CVE-2024-47870 Race condition in update_root_in_config may redirect user traffic in Gradio

Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a race condition in the updaterootinconfig function, allowing an attacker to modify the root URL used by the Gradio frontend to communicate with the backend. By exploiting this flaw, an attacker ca...

7.1CVSS6.4AI score0.00359EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2024/10/10 10:4 p.m.4 views

academic-chatgpt (>=0.3.0 <=0.4.1), africanwhisper (>=0.2.1 <=0.9.0) +316 more potentially affected by CVE-2024-47870 via gradio (>=1.7.7 <=4.8.0)

gradio PYPI version =1.7.7, =0.3.0, =0.2.1, =0.1.5, =0.0.6, =0.0.2, =0.1.0, =0.8.11, =0.4.0, =0.0.4, =0.7.0.dev134, =0.7.0.dev143 - anymodality =0.1.0 - apillava =0.1.0 and more Source cves: CVE-2024-47870 Source advisory: OSV:GHSA-XH2X-3MRM-FWQM...

8.1CVSS5.7AI score0.00359EPSS
Exploits0
Rows per page
Query Builder