HIGH 7.3

GHSA-r364-m2j9-mf4h

gradio Server-Side Request Forgery vulnerability

상세

An SSRF vulnerability exists in the gradio-app/gradio due to insufficient validation of user-supplied URLs in the `/proxy` route. Attackers can exploit this vulnerability by manipulating the `self.replica_urls` set through the `X-Direct-Url` header in requests to the `/` and `/config` routes, allowing the addition of arbitrary URLs for proxying. This flaw enables unauthorized proxying of requests and potential access to internal endpoints within the Hugging Face space. The issue arises from the application's inadequate checking of safe URLs in the `build_proxy_request` function.

이 버전이 영향받나요?

사용 중인 패키지 버전을 입력하면 즉시 평가합니다.

영향 패키지

PyPI / gradio

최초 영향 버전: 0 수정 버전: 4.18.0

수정 pip install --upgrade 'gradio>=4.18.0'

참고

https://nvd.nist.gov/vuln/detail/CVE-2024-2206 [ADVISORY]
https://github.com/gradio-app/gradio/commit/49d9c48537aa706bf72628e3640389470138bdc6 [WEB]
https://github.com/gradio-app/gradio [PACKAGE]
https://huntr.com/bounties/2286c1ed-b889-45d6-adda-7014ea06d98e [WEB]