Lucene search
+L

4 matches found

vulnersOsv
vulnersOsv
added 2024/10/10 11:15 p.m.4 views

academic-chatgpt (>=0.3.0 <=0.4.1), africanwhisper (>=0.2.1 <=0.9.0) +316 more potentially affected by CVE-2024-47868 via gradio (>=1.7.7 <=4.8.0)

gradio PYPI version =1.7.7, =0.3.0, =0.2.1, =0.1.5, =0.0.6, =0.0.2, =0.1.0, =0.8.11, =0.4.0, =0.0.4, =0.7.0.dev134, =0.7.0.dev143 - anymodality =0.1.0 - apillava =0.1.0 and more Source cves: CVE-2024-47868 Source advisory: OSV:PYSEC-2024-217...

7.5CVSS5.7AI score0.00804EPSS
Exploits1
CVE
CVE
added 2024/10/10 10:18 p.m.63 views

CVE-2024-47868

CVE-2024-47868 affects Gradio, an open‑source Python library. A data validation vulnerability in post-processing steps can leak arbitrary files via several components that handle file data, including: String to FileData (DownloadButton, Audio, ImageEditor, Video, Model3D, File, UploadButton), Com...

7.5CVSS7.5AI score0.00804EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/10/10 10:18 p.m.23 views

CVE-2024-47868 Several components’ post-process steps may allow arbitrary file leaks in Gradio

Gradio is an open-source Python package designed for quick prototyping. This is a data validation vulnerability affecting several Gradio components, which allows arbitrary file leaks through the post-processing step. Attackers can exploit these components by crafting requests that bypass expected...

6.3CVSS0.00804EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2024/10/10 10:3 p.m.4 views

academic-chatgpt (>=0.3.0 <=0.4.1), africanwhisper (>=0.2.1 <=0.9.0) +316 more potentially affected by CVE-2024-47868 via gradio (>=1.7.7 <=4.8.0)

gradio PYPI version =1.7.7, =0.3.0, =0.2.1, =0.1.5, =0.0.6, =0.0.2, =0.1.0, =0.8.11, =0.4.0, =0.0.4, =0.7.0.dev134, =0.7.0.dev143 - anymodality =0.1.0 - apillava =0.1.0 and more Source cves: CVE-2024-47868 Source advisory: OSV:GHSA-4Q3C-CJ7G-JCWF...

7.5CVSS5.7AI score0.00804EPSS
Exploits1
Rows per page
Query Builder