CVE-2024-34511 | Gradio up to 4.12 Server _is_server_fn Privilege Escalation

Posted by Angelo Barbosa | May 5, 2024 | CVE

A vulnerability was found in Gradio up to 4.12. It has been declared as problematic. This vulnerability affects the function _is_server_fn of the component Server. The manipulation leads to Privilege Escalation.

This vulnerability was named CVE-2024-34511. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34511 | Gradio up to 4.12 Server _is_server_fn Privilege Escalation

Related Posts

CVE-2024-35812 | Linux Kernel up to 6.8.7 wdm_read information disclosure

CVE-2024-10270 | Keycloak SearchQueryUtils redos

CVE-2023-6895 | Hikvision Intercom Broadcasting System 3.0.3_20201113_RELEASE(HIK) /php/ping.php jsondata[ip] os command injection

Eclipse Parsson JSON Parser denial of service