CVE-2024-1727

EUVD-2024-1407

21.03.2024, 20:15

A Cross-Site Request Forgery (CSRF) vulnerability in gradio-app/gradio allows attackers to upload multiple large files to a victim's system if they are running Gradio locally. By crafting a malicious HTML page that triggers an unauthorized file upload to the victim's server, an attacker can deplete the system's disk space, potentially leading to a denial of service. This issue affects the file upload functionality as implemented in gradio/routes.py.

CSRF

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	4.3 MEDIUM	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
@huntr_ai	CNA	4.3 MEDIUM	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Base Score

CVSS 3.x

EPSS Score

Percentile: 30%

Affected Products (NVD)

Vendor	Product	Version
gradio_project	gradio	4.16.0 ≤ 𝑥 < 4.19.2

𝑥

= Vulnerable software versions

Known Exploits!

Common Weakness Enumeration

CWE-352 - Cross-Site Request Forgery (CSRF)
The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

References

https://github.com/gradio-app/gradio/commit/84802ee6a4806c25287344dce581f9548a99834a

https://huntr.com/bounties/a94d55fb-0770-4cbe-9b20-97a978a2ffff

https://github.com/gradio-app/gradio/commit/84802ee6a4806c25287344dce581f9548a99834a

https://huntr.com/bounties/a94d55fb-0770-4cbe-9b20-97a978a2ffff