Cyber Resilience

CVE-2024-1183

MediumPublic PoC

Published: 16 April 2024

Published
16 April 2024
Modified
29 July 2025
KEV Added
Patch
CVSS Score v3 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS Score 0.5505 98.1th percentile
Risk Priority 46 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-1183 is a medium-severity Open Redirect (CWE-601) vulnerability in Gradio Project Gradio. Its CVSS base score is 6.5 (Medium).

Operationally, ranked in the top 1.9% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

Deeper analysis

An SSRF vulnerability tracked as CVE-2024-1183 affects the Gradio web interface library in the gradio-app/gradio repository. The flaw resides in handling of the file parameter on GET requests, where insufficient validation permits an attacker to cause the server to issue requests to arbitrary internal destinations and infer port status from response headers or error messages such as “File not allowed.”

An unauthenticated remote attacker can exploit the issue by crafting requests that target internal hosts and ports; successful responses containing a Location header reveal open services, while error responses indicate closed or filtered ports. This enables network reconnaissance inside environments where the Gradio application is deployed, potentially exposing backend infrastructure that would otherwise be inaccessible from the public internet.

Public references point to a fix committed in the Gradio repository (commit 2ad3d9e) that restricts the file parameter to prevent arbitrary internal requests; the associated huntr.dev report confirms the patch addresses the SSRF vector.

The vulnerability occurs in a library widely used for machine-learning demo interfaces. EPSS scores reached a peak of 0.6567 and remain at 0.5505, indicating sustained exploitation interest after disclosure.

EU & UK References

Vulnerability details

An SSRF (Server-Side Request Forgery) vulnerability exists in the gradio-app/gradio repository, allowing attackers to scan and identify open ports within an internal network. By manipulating the 'file' parameter in a GET request, an attacker can discern the status of internal…

more

ports based on the presence of a 'Location' header or a 'File not allowed' error in the response.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

gradio project
gradio
3.41.0 — 4.11.0

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-601

Security awareness includes verifying URLs and avoiding untrusted redirects that lead to malicious sites.

addresses: CWE-601

Validates redirect targets and URLs to ensure they conform to allowed destinations.

References