CVE-2024-4325

Description

A Server-Side Request Forgery (SSRF) vulnerability exists in the gradio-app/gradio and was discovered in version 4.21.0, specifically within the `/queue/join` endpoint and the `save_url_to_cache` function. The vulnerability arises when the `path` value, obtained from the user and expected to be a URL, is used to make an HTTP request without sufficient validation checks. This flaw allows an attacker to send crafted requests that could lead to unauthorized access to the local network or the AWS metadata endpoint, thereby compromising the security of internal servers.

How to fix CVE-2024-4325

No fixed version has been published yet. Mitigate by removing the affected package or applying upstream guidance from the references below.

• —no fix listed

Is CVE-2024-4325 being exploited?

Likely — EPSS is 65.1%, placing CVE-2024-4325 in the top tier of vulnerabilities by exploitation probability. Prioritise patching.

Affected packages (1)

• from 0, <= 4.36.0

CVSS scores

References (4)

• ADVISORYnvd.nist.gov/vuln/detail/CVE-2024-4325
• PATCHgithub.com/gradio-app/gradio
• WEBgithub.com/gradio-app/gradio/pull/8301
• WEBhuntr.com/bounties/b34f084b-7d14-4f00-bc10-048a3a5aaf88