CVE-2024-1183
Published: 16 April 2024
Summary
CVE-2024-1183 is a medium-severity Open Redirect (CWE-601) vulnerability in Gradio Project Gradio. Its CVSS base score is 6.5 (Medium).
Operationally, ranked in the top 1.9% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
An SSRF vulnerability tracked as CVE-2024-1183 affects the Gradio web interface library in the gradio-app/gradio repository. The flaw resides in handling of the file parameter on GET requests, where insufficient validation permits an attacker to cause the server to issue requests to arbitrary internal destinations and infer port status from response headers or error messages such as “File not allowed.”
An unauthenticated remote attacker can exploit the issue by crafting requests that target internal hosts and ports; successful responses containing a Location header reveal open services, while error responses indicate closed or filtered ports. This enables network reconnaissance inside environments where the Gradio application is deployed, potentially exposing backend infrastructure that would otherwise be inaccessible from the public internet.
Public references point to a fix committed in the Gradio repository (commit 2ad3d9e) that restricts the file parameter to prevent arbitrary internal requests; the associated huntr.dev report confirms the patch addresses the SSRF vector.
The vulnerability occurs in a library widely used for machine-learning demo interfaces. EPSS scores reached a peak of 0.6567 and remain at 0.5505, indicating sustained exploitation interest after disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-1278
Vulnerability details
An SSRF (Server-Side Request Forgery) vulnerability exists in the gradio-app/gradio repository, allowing attackers to scan and identify open ports within an internal network. By manipulating the 'file' parameter in a GET request, an attacker can discern the status of internal…
more
ports based on the presence of a 'Location' header or a 'File not allowed' error in the response.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.