CVE-2024-4325 HIGH

CVE-2024-4325: Server-Side Request Forgery (SSRF) in gradio-app/gradio

Vendor Gradio-App

Product gradio-app/gradio

Weakness CWE-918 · SSRF

Published June 6, 2024

Last update August 1, 2024

View on NVD All CVEs

CVSS base score

8.6/10

Attack vector Network

Attack complexity Low

Privileges required None

User interaction None

Confidentiality High

Integrity None

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

What the vulnerability does

01Description

A Server-Side Request Forgery (SSRF) vulnerability exists in the gradio-app/gradio version 4.21.0, specifically within the `/queue/join` endpoint and the `save_url_to_cache` function. The vulnerability arises when the `path` value, obtained from the user and expected to be a URL, is used to make an HTTP request without sufficient validation checks. This flaw allows an attacker to send crafted requests that could lead to unauthorized access to the local network or the AWS metadata endpoint, thereby compromising the security of internal servers.

Key dates

02Disclosure timeline

June 6, 2024 CVE published

August 1, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2024-4325

Related vulnerabilities

Identifiers

CVE CVE-2024-4325

CWE CWE-918

CVSS 8.6 / HIGH

Affected versions