Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:39472
HistoryMar 01, 2023 - 8:15 a.m.

Authentication Bypass

2023-03-0108:15:10
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
32
gradio
authentication bypass
vulnerability
ssh keys
demos

0.002 Low

EPSS

Percentile

54.1%

JSON

gradio is vulnerable to Authentication Bypass. The vulnerability exists due to the use of hard coded private ssh keys when sharing demos, which allows an attacker to gain access to other demos on the system.

CPENameOperatorVersion
gradiole3.13.0
gradiole3.13.0

Related

osv 3
github 1
prion 1
cve 1
cvelist 1
nvd 1
osv
osv
PYSEC-2023-16
2023-02-23 22:15:00
Update share links to use FRP instead of SSH tunneling
2023-02-23 22:10:19
CVE-2023-25823
2023-02-23 22:15:11
github
github
Update share links to use FRP instead of SSH tunneling
2023-02-23 22:10:19
prion
prion
Hardcoded credentials
2023-02-23 22:15:00
cve
cve
CVE-2023-25823
2023-02-23 22:15:11
cvelist
cvelist
CVE-2023-25823 Gradio contains Use of Hard-coded Credentials
2023-02-23 21:34:33
nvd
nvd
CVE-2023-25823
2023-02-23 22:15:11

0.002 Low

EPSS

Percentile

54.1%

JSON
Related for VERACODE:39472
osv3github1prion1cve1cvelist1nvd1