cvelistv5 - cve-2023-25823

CVE-2023-25823 (GCVE-0-2023-25823)

Vulnerability from cvelistv5 – Published: 2023-02-23 21:34 – Updated: 2025-03-10 21:06

Summary

Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio's share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users' shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users are recommended to update to 3.19.1 or later where the FRP solution has been properly tested.

Severity ?

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L

CWE

CWE-798 - Use of Hard-coded Credentials

Assigner

GitHub_M

References

URL

Tags

https://github.com/gradio-app/gradio/security/adv…

x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	gradio-app	gradio	Affected: < 3.13.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T11:32:12.527Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5",
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-25823",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-03-10T20:56:59.828144Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-10T21:06:29.065Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "gradio",
          "vendor": "gradio-app",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 3.13.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio\u0027s share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users\u0027 shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users  are recommended to update to 3.19.1 or later where the FRP solution has been properly tested. "
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-798",
              "description": "CWE-798: Use of Hard-coded Credentials",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-02-23T21:34:33.129Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5"
        }
      ],
      "source": {
        "advisory": "GHSA-3x5j-9vwr-8rr5",
        "discovery": "UNKNOWN"
      },
      "title": "Gradio contains Use of Hard-coded Credentials"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2023-25823",
    "datePublished": "2023-02-23T21:34:33.129Z",
    "dateReserved": "2023-02-15T16:34:48.774Z",
    "dateUpdated": "2025-03-10T21:06:29.065Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gradio_project:gradio:*:*:*:*:*:python:*:*\", \"versionEndExcluding\": \"3.13.1\", \"matchCriteriaId\": \"9780A646-24FE-4206-B2B6-4C9A7270F1FB\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio\u0027s share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users\u0027 shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users  are recommended to update to 3.19.1 or later where the FRP solution has been properly tested. \"}]",
      "id": "CVE-2023-25823",
      "lastModified": "2024-11-21T07:50:16.323",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L\", \"baseScore\": 5.4, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"LOW\"}, \"exploitabilityScore\": 2.2, \"impactScore\": 2.7}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}]}",
      "published": "2023-02-23T22:15:11.580",
      "references": "[{\"url\": \"https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "security-advisories@github.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-798\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-798\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-25823\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2023-02-23T22:15:11.580\",\"lastModified\":\"2024-11-21T07:50:16.323\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio\u0027s share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users\u0027 shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users  are recommended to update to 3.19.1 or later where the FRP solution has been properly tested. \"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L\",\"baseScore\":5.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.2,\"impactScore\":2.7},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-798\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-798\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gradio_project:gradio:*:*:*:*:*:python:*:*\",\"versionEndExcluding\":\"3.13.1\",\"matchCriteriaId\":\"9780A646-24FE-4206-B2B6-4C9A7270F1FB\"}]}]}],\"references\":[{\"url\":\"https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5\", \"name\": \"https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T11:32:12.527Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-25823\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-03-10T20:56:59.828144Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-03-10T20:57:01.031Z\"}}], \"cna\": {\"title\": \"Gradio contains Use of Hard-coded Credentials\", \"source\": {\"advisory\": \"GHSA-3x5j-9vwr-8rr5\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 5.4, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"gradio-app\", \"product\": \"gradio\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 3.13.1\"}]}], \"references\": [{\"url\": \"https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5\", \"name\": \"https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5\", \"tags\": [\"x_refsource_CONFIRM\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio\u0027s share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users\u0027 shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users  are recommended to update to 3.19.1 or later where the FRP solution has been properly tested. \"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-798\", \"description\": \"CWE-798: Use of Hard-coded Credentials\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2023-02-23T21:34:33.129Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-25823\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-03-10T21:06:29.065Z\", \"dateReserved\": \"2023-02-15T16:34:48.774Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2023-02-23T21:34:33.129Z\", \"assignerShortName\": \"GitHub_M\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

GSD-2023-25823

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2023-25823

Aliases

CVE-2023-25823

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-25823",
    "id": "GSD-2023-25823"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-25823"
      ],
      "details": "Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio\u0027s share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users\u0027 shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users are recommended to update to 3.19.1 or later where the FRP solution has been properly tested.",
      "id": "GSD-2023-25823",
      "modified": "2023-12-13T01:20:40.646347Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security-advisories@github.com",
        "ID": "CVE-2023-25823",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "gradio",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "\u003c 3.13.1"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "gradio-app"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio\u0027s share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users\u0027 shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users are recommended to update to 3.19.1 or later where the FRP solution has been properly tested."
          }
        ]
      },
      "impact": {
        "cvss": [
          {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "cweId": "CWE-798",
                "lang": "eng",
                "value": "CWE-798: Use of Hard-coded Credentials"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5",
            "refsource": "MISC",
            "url": "https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5"
          }
        ]
      },
      "source": {
        "advisory": "GHSA-3x5j-9vwr-8rr5",
        "discovery": "UNKNOWN"
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "\u003c3.13.1",
          "affected_versions": "All versions before 3.13.1",
          "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "cwe_ids": [
            "CWE-1035",
            "CWE-798",
            "CWE-937"
          ],
          "date": "2023-03-07",
          "description": "Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio\u0027s share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users\u0027 shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users are recommended to update to 3.19.1 or later where the FRP solution has been properly tested.",
          "fixed_versions": [
            "3.13.1"
          ],
          "identifier": "CVE-2023-25823",
          "identifiers": [
            "CVE-2023-25823",
            "GHSA-3x5j-9vwr-8rr5"
          ],
          "not_impacted": "All versions starting from 3.13.1",
          "package_slug": "pypi/gradio",
          "pubdate": "2023-02-23",
          "solution": "Upgrade to version 3.13.1 or above.",
          "title": "Update share links to use FRP instead of SSH tunneling",
          "urls": [
            "https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5",
            "https://nvd.nist.gov/vuln/detail/CVE-2023-25823",
            "https://github.com/advisories/GHSA-3x5j-9vwr-8rr5"
          ],
          "uuid": "71db45e9-122c-4588-8d9c-43a832585c6c"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:gradio_project:gradio:*:*:*:*:*:python:*:*",
                "cpe_name": [],
                "versionEndExcluding": "3.13.1",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security-advisories@github.com",
          "ID": "CVE-2023-25823"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio\u0027s share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users\u0027 shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users are recommended to update to 3.19.1 or later where the FRP solution has been properly tested."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-798"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2023-03-07T22:03Z",
      "publishedDate": "2023-02-23T22:15Z"
    }
  }
}

GHSA-3X5J-9VWR-8RR5

Vulnerability from github – Published: 2023-02-23 22:10 – Updated: 2024-09-20 21:41

Summary

Update share links to use FRP instead of SSH tunneling

Details

Impact

This is a vulnerability which affects anyone using Gradio's share links (i.e. creating a Gradio app and then setting share=True) with Gradio versions older than 3.13.1. In these older versions of Gradio, a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users' shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides.

Patches

The problem has been patched. Ideally, users should upgrade to gradio==3.19.1 or later where the FRP solution has been properly tested.

Credit

Credit to Greg Sadetsky and Samuel Tremblay-Cossette for alerting the team

Severity ?

5.4 (Medium)


                  
                    CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L

6.3 (Medium)


                  
                    CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:L/SA:L

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "PyPI",
        "name": "gradio"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "3.13.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2023-25823"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-798"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2023-02-23T22:10:19Z",
    "nvd_published_at": "2023-02-23T22:15:00Z",
    "severity": "MODERATE"
  },
  "details": "### Impact\nThis is a vulnerability which affects anyone using Gradio\u0027s share links (i.e. creating a Gradio app and then setting `share=True`) with Gradio versions older than 3.13.1. In these older versions of Gradio, a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users\u0027 shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. \n\n### Patches\nThe problem has been patched. Ideally, users should upgrade to `gradio==3.19.1` or later where the FRP solution has been properly tested. \n\n### Credit\nCredit to Greg Sadetsky and Samuel Tremblay-Cossette for alerting the team",
  "id": "GHSA-3x5j-9vwr-8rr5",
  "modified": "2024-09-20T21:41:25Z",
  "published": "2023-02-23T22:10:19Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25823"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/gradio-app/gradio"
    },
    {
      "type": "WEB",
      "url": "https://github.com/pypa/advisory-database/tree/main/vulns/gradio/PYSEC-2023-16.yaml"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:L/SA:L",
      "type": "CVSS_V4"
    }
  ],
  "summary": "Update share links to use FRP instead of SSH tunneling"
}

FKIE_CVE-2023-25823

Vulnerability from fkie_nvd - Published: 2023-02-23 22:15 - Updated: 2024-11-21 07:50

Severity ?

5.4 (Medium) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	security-advisories@github.com	https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5	Vendor Advisory

Impacted products

	Vendor	Product	Version
	gradio_project	gradio	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:gradio_project:gradio:*:*:*:*:*:python:*:*",
              "matchCriteriaId": "9780A646-24FE-4206-B2B6-4C9A7270F1FB",
              "versionEndExcluding": "3.13.1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio\u0027s share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users\u0027 shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users  are recommended to update to 3.19.1 or later where the FRP solution has been properly tested. "
    }
  ],
  "id": "CVE-2023-25823",
  "lastModified": "2024-11-21T07:50:16.323",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 5.4,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 2.7,
        "source": "security-advisories@github.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2023-02-23T22:15:11.580",
  "references": [
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5"
    }
  ],
  "sourceIdentifier": "security-advisories@github.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-798"
        }
      ],
      "source": "security-advisories@github.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-798"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

PYSEC-2023-16

Vulnerability from pysec - Published: 2023-02-23 22:15 - Updated: 2023-05-04 03:49

Details

Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio's share links (i.e. creating a Gradio app and then setting share=True), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users' shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users are recommended to update to 3.19.1 or later where the FRP solution has been properly tested.

Impacted products

Name	purl
gradio	pkg:pypi/gradio

Aliases

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "PyPI",
        "name": "gradio",
        "purl": "pkg:pypi/gradio"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "3.13.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "0.1.0",
        "0.1.1",
        "0.1.2",
        "0.1.3",
        "0.1.4",
        "0.1.5",
        "0.1.6",
        "0.1.7",
        "0.1.8",
        "0.1.9",
        "0.2.0",
        "0.2.1",
        "0.3.0",
        "0.3.1",
        "0.3.2",
        "0.3.3",
        "0.3.4",
        "0.3.5",
        "0.4.0",
        "0.4.1",
        "0.4.2",
        "0.4.4",
        "0.5.0",
        "0.7.0",
        "0.7.1",
        "0.7.2",
        "0.7.3",
        "0.7.4",
        "0.7.5",
        "0.7.6",
        "0.7.7",
        "0.7.8",
        "0.8.0",
        "0.8.1",
        "0.9.0",
        "0.9.1",
        "0.9.2",
        "0.9.3",
        "0.9.4",
        "0.9.5",
        "0.9.6",
        "0.9.7",
        "0.9.8",
        "0.9.9.2",
        "0.9.9.3",
        "0.9.9.5",
        "0.9.9.6",
        "0.9.9.7",
        "0.9.9.8",
        "0.9.9.9",
        "0.9.9.9.2",
        "1.0.0",
        "1.0.0a1",
        "1.0.0a3",
        "1.0.0a4",
        "1.0.1",
        "1.0.2",
        "1.0.3",
        "1.0.4",
        "1.0.5",
        "1.0.6",
        "1.0.7",
        "1.1.0",
        "1.1.1",
        "1.1.2",
        "1.1.3",
        "1.1.4",
        "1.1.5",
        "1.1.6",
        "1.1.8",
        "1.1.8.1",
        "1.1.9",
        "1.2.2",
        "1.2.3",
        "1.3.0",
        "1.3.1",
        "1.3.2",
        "1.4.0",
        "1.4.2",
        "1.4.3",
        "1.4.4",
        "1.5.0",
        "1.5.1",
        "1.5.3",
        "1.5.4",
        "1.6.0",
        "1.6.1",
        "1.6.2",
        "1.6.3",
        "1.6.4",
        "1.7.0",
        "1.7.1",
        "1.7.2",
        "1.7.3",
        "1.7.4",
        "1.7.5",
        "1.7.6",
        "1.7.7",
        "2.0.0",
        "2.0.1",
        "2.0.10",
        "2.0.2",
        "2.0.4",
        "2.0.5",
        "2.0.6",
        "2.0.7",
        "2.0.8",
        "2.0.9",
        "2.1.0",
        "2.1.1",
        "2.1.2",
        "2.1.4",
        "2.1.6",
        "2.1.7",
        "2.2.0",
        "2.2.1",
        "2.2.10",
        "2.2.11",
        "2.2.12",
        "2.2.13",
        "2.2.14",
        "2.2.15",
        "2.2.2",
        "2.2.3",
        "2.2.4",
        "2.2.5",
        "2.2.6",
        "2.2.7",
        "2.2.8",
        "2.2.9a0",
        "2.2.9a2",
        "2.3.0",
        "2.3.0a0",
        "2.3.0b101",
        "2.3.0b102",
        "2.3.0b99",
        "2.3.3",
        "2.3.4",
        "2.3.5",
        "2.3.5b0",
        "2.3.6",
        "2.3.7",
        "2.3.7b0",
        "2.3.7b1",
        "2.3.7b2",
        "2.3.8b0",
        "2.3.9",
        "2.4.0",
        "2.4.0a0",
        "2.4.1",
        "2.4.2",
        "2.4.4",
        "2.4.5",
        "2.4.6",
        "2.4.7b0",
        "2.4.7b2",
        "2.4.7b3",
        "2.4.7b4",
        "2.4.7b5",
        "2.4.7b6",
        "2.4.7b7",
        "2.4.7b8",
        "2.4.7b9",
        "2.5.0",
        "2.5.1",
        "2.5.2",
        "2.5.3",
        "2.5.8a0",
        "2.6.0",
        "2.6.1",
        "2.6.1a0",
        "2.6.1b0",
        "2.6.1b3",
        "2.6.2",
        "2.6.3",
        "2.6.4",
        "2.6.4b0",
        "2.6.4b2",
        "2.6.4b3",
        "2.7.0",
        "2.7.0a101",
        "2.7.0a102",
        "2.7.0b70",
        "2.7.5",
        "2.7.5.1",
        "2.7.5.2",
        "2.7.5.2b0",
        "2.8.0",
        "2.8.0a100",
        "2.8.0b0",
        "2.8.0b10",
        "2.8.0b12",
        "2.8.0b2",
        "2.8.0b20",
        "2.8.0b22",
        "2.8.0b3",
        "2.8.0b4",
        "2.8.0b5",
        "2.8.0b6",
        "2.8.1",
        "2.8.10",
        "2.8.11",
        "2.8.12",
        "2.8.13",
        "2.8.14",
        "2.8.2",
        "2.8.3",
        "2.8.4",
        "2.8.5",
        "2.8.6",
        "2.8.7",
        "2.8.8",
        "2.8.9",
        "2.9.0",
        "2.9.0.1",
        "2.9.0b0",
        "2.9.0b1",
        "2.9.0b10",
        "2.9.0b2",
        "2.9.0b3",
        "2.9.0b5",
        "2.9.0b6",
        "2.9.0b7",
        "2.9.0b8",
        "2.9.0b9",
        "2.9.1",
        "2.9.2",
        "2.9.3",
        "2.9.4",
        "2.9b11",
        "2.9b12",
        "2.9b13",
        "2.9b14",
        "2.9b15",
        "2.9b20",
        "2.9b21",
        "2.9b22",
        "2.9b23",
        "2.9b24",
        "2.9b25",
        "2.9b26",
        "2.9b27",
        "2.9b28",
        "2.9b30",
        "2.9b31",
        "2.9b32",
        "2.9b33",
        "2.9b40",
        "2.9b48",
        "2.9b50",
        "3.0",
        "3.0.1",
        "3.0.10",
        "3.0.10b16",
        "3.0.10b2",
        "3.0.11",
        "3.0.11b1",
        "3.0.12",
        "3.0.13",
        "3.0.13b100",
        "3.0.13b13",
        "3.0.13b15",
        "3.0.14",
        "3.0.15",
        "3.0.16",
        "3.0.17",
        "3.0.18",
        "3.0.18b0",
        "3.0.19",
        "3.0.19b0",
        "3.0.19b1",
        "3.0.19b2",
        "3.0.1b120",
        "3.0.1b121",
        "3.0.1b300",
        "3.0.2",
        "3.0.20",
        "3.0.20.dev0",
        "3.0.21",
        "3.0.22",
        "3.0.23",
        "3.0.23.dev1",
        "3.0.24",
        "3.0.25",
        "3.0.26",
        "3.0.3",
        "3.0.4",
        "3.0.5",
        "3.0.6",
        "3.0.6b1",
        "3.0.6b2",
        "3.0.6b3",
        "3.0.7",
        "3.0.8",
        "3.0.8b1",
        "3.0.9",
        "3.0.9b10",
        "3.0.9b11",
        "3.0.9b20",
        "3.0b0",
        "3.0b1",
        "3.0b10",
        "3.0b2",
        "3.0b5",
        "3.0b6",
        "3.0b8",
        "3.0b9",
        "3.1.0",
        "3.1.1",
        "3.1.2",
        "3.1.3",
        "3.1.3a0",
        "3.1.3a2",
        "3.1.3a3",
        "3.1.3a4",
        "3.1.3a5",
        "3.1.4",
        "3.1.4b0",
        "3.1.4b1",
        "3.1.4b2",
        "3.1.4b3",
        "3.1.4b4",
        "3.1.4b5",
        "3.1.5",
        "3.1.5b1",
        "3.1.5b10",
        "3.1.5b2",
        "3.1.5b3",
        "3.1.5b4",
        "3.1.5b5",
        "3.1.5b7",
        "3.1.5b8",
        "3.1.5b9",
        "3.1.6",
        "3.1.6b1",
        "3.1.7",
        "3.1.8b0",
        "3.1.8b2",
        "3.1.8b3",
        "3.1.8b4",
        "3.1.8b6",
        "3.10.0",
        "3.10.1",
        "3.11.0",
        "3.12.0",
        "3.12.0b1",
        "3.12.0b2",
        "3.12.0b3",
        "3.12.0b6",
        "3.12.0b7",
        "3.13.0",
        "3.13.0b1",
        "3.13.1b0",
        "3.13.1b1",
        "3.13.1b2",
        "3.2",
        "3.2.1b0",
        "3.2.1b1",
        "3.2.1b2",
        "3.3",
        "3.3.1",
        "3.3b0",
        "3.3b1",
        "3.4",
        "3.4.1",
        "3.4b0",
        "3.4b1",
        "3.4b2",
        "3.4b3",
        "3.4b5",
        "3.5",
        "3.6",
        "3.6.0b1",
        "3.6.0b10",
        "3.6.0b2",
        "3.6.0b3",
        "3.6.0b7",
        "3.7",
        "3.8",
        "3.8.1",
        "3.8.1.dev1",
        "3.8.2",
        "3.8b1",
        "3.8b2",
        "3.9",
        "3.9.1"
      ]
    }
  ],
  "aliases": [
    "CVE-2023-25823",
    "GHSA-3x5j-9vwr-8rr5"
  ],
  "details": "Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio\u0027s share links (i.e. creating a Gradio app and then setting `share=True`), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users\u0027 shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users are recommended to update to 3.19.1 or later where the FRP solution has been properly tested.",
  "id": "PYSEC-2023-16",
  "modified": "2023-05-04T03:49:45.858658Z",
  "published": "2023-02-23T22:15:00Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-25823 (GCVE-0-2023-25823)

GSD-2023-25823

GHSA-3X5J-9VWR-8RR5

Impact

Patches

Credit

FKIE_CVE-2023-25823

PYSEC-2023-16

Tags

Sightings

Nomenclature