Lucene search
K

29 matches found

CVE
CVE
added 2024/10/10 10:18 p.m.63 views

CVE-2024-47868

CVE-2024-47868 affects Gradio, an open‑source Python library. A data validation vulnerability in post-processing steps can leak arbitrary files via several components that handle file data, including: String to FileData (DownloadButton, Audio, ImageEditor, Video, Model3D, File, UploadButton), Com...

7.5CVSS7.5AI score0.00804EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/10/10 10:18 p.m.20 views

CVE-2024-47868 Several components’ post-process steps may allow arbitrary file leaks in Gradio

Gradio is an open-source Python package designed for quick prototyping. This is a data validation vulnerability affecting several Gradio components, which allows arbitrary file leaks through the post-processing step. Attackers can exploit these components by crafting requests that bypass expected...

6.3CVSS6.5AI score0.00804EPSS
Exploits1References3
OSV
OSV
added 2024/10/10 10:3 p.m.7 views

GHSA-4Q3C-CJ7G-JCWF Gradio has several components with post-process steps allow arbitrary file leaks

Impact What kind of vulnerability is it? Who is impacted? This is a data validation vulnerability affecting several Gradio components, which allows arbitrary file leaks through the post-processing step. Attackers can exploit these components by crafting requests that bypass expected input...

6.9CVSS7.5AI score0.00804EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2024/10/10 10:3 p.m.27 views

Gradio has several components with post-process steps allow arbitrary file leaks

Impact What kind of vulnerability is it? Who is impacted? This is a data validation vulnerability affecting several Gradio components, which allows arbitrary file leaks through the post-processing step. Attackers can exploit these components by crafting requests that bypass expected input...

7.5CVSS6.7AI score0.00804EPSS
Exploits1References4Affected Software1
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.3 views

kernel: nfsd: clean up potential nfsd_file refcount leaks in COPY codepath

A reference leak flaw was found in the Linux kernel's NFS server implementation in the file copy operation handling. A local user can trigger this issue when asynchronous copy operations fail to create worker threads, causing nfsdfile references held by the embedded copy structure to leak. This...

5.5CVSS7.1AI score0.00135EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/02/19 12:0 a.m.8 views

HubSpot Jinjava Information Disclosure Vulnerability

HubSpot Jinjava is a U.S. HubSpotn individual developers of a software application . Provides a Java-based template template engine , based on Django template syntax , suitable for rendering jinja templates . A security vulnerability exists in Jinjava. The vulnerability stems from allowing access...

6.8CVSS6.7AI score0.01814EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.12 views

MDVA-2008:115 : drakxtools

This drakxtools update contains file leaks and automatic disk discovery fixes. The network driver detection used to leak file descriptors, meaning that network applications like the wireless tool or the network center stopped working after extended use. The automatic disk discovery tool did not...

7AI score
Exploits0References1
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.13 views

Mandriva Update for drakxtools MDVA-2008:115 (drakxtools)

Check for the Version of drakxtools OpenVAS Vulnerability Test Mandriva Update for drakxtools MDVA-2008:115 drakxtools Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

7.4AI score
Exploits0References2
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.15 views

Mandriva Update for drakxtools MDVA-2008:115 (drakxtools)

Check for the Version of drakxtools OpenVAS Vulnerability Test Mandriva Update for drakxtools MDVA-2008:115 drakxtools Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

7.4AI score
Exploits0References2
Rows per page
Query Builder