Lucene search
K

4 matches found

NVD
NVD
added 2024/04/16 12:15 a.m.13 views

CVE-2024-1183

An SSRF Server-Side Request Forgery vulnerability exists in the gradio-app/gradio repository, allowing attackers to scan and identify open ports within an internal network. By manipulating the 'file' parameter in a GET request, an attacker can discern the status of internal ports based on the...

6.5CVSS6.4AI score0.01784EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/04/15 12:0 a.m.5 views

PT-2024-17278 · Gradio · Gradio

Name of the Vulnerable Software and Affected Versions: gradio-app/gradio affected versions not specified Description: A Server-Side Request Forgery SSRF issue exists, allowing attackers to scan and identify open ports within an internal network. By manipulating the file parameter in a GET request...

6.5CVSS6.3AI score0.01784EPSS
Exploits1References11
CNNVD
CNNVD
added 2024/04/15 12:0 a.m.5 views

Gradio 输入验证错误漏洞

Gradio is an open source Python library that is a way to demonstrate machine learning models through a friendly web interface. Gradio suffers from an input validation error vulnerability that stems from the presence of a server-side request forgery vulnerability that allows an attacker to scan an...

6.5CVSS6.4AI score0.01784EPSS
Exploits1References4
NVD
NVD
added 2019/09/10 5:15 p.m.16 views

CVE-2019-0363

Attackers may misuse an HTTP/REST endpoint of SAP HANA Extended Application Services Advanced model, before version 1.0.118, to overload the server or retrieve information about internal network ports...

7.1CVSS6.8AI score0.00897EPSS
Exploits0References2
Rows per page
Query Builder