CVE-2024-2206 — gradio Server-Side Request Forgery vulnerability

Description

An SSRF vulnerability exists in the gradio-app/gradio due to insufficient validation of user-supplied URLs in the `/proxy` route. Attackers can exploit this vulnerability by manipulating the `self.replica_urls` set through the `X-Direct-Url` header in requests to the `/` and `/config` routes, allowing the addition of arbitrary URLs for proxying. This flaw enables unauthorized proxying of requests and potential access to internal endpoints within the Hugging Face space. The issue arises from the application's inadequate checking of safe URLs in the `build_proxy_request` function.

How to fix CVE-2024-2206

To remediate CVE-2024-2206, upgrade the affected package to a fixed version below.

—upgrade to 4.18.0 or later

Is CVE-2024-2206 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

from 0, < 4.18.0

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH7.3	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

References (4)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2024-2206
PATCHgithub.com/gradio-app/gradio
WEBgithub.com/gradio-app/gradio/commit/49d9c48537aa706bf72628e3640389470138bdc6
WEBhuntr.com/bounties/2286c1ed-b889-45d6-adda-7014ea06d98e