CVE-2024-34511 | Gradio up to 4.12 Server _is_server_fn Privilege Escalation

Posted by Angelo Barbosa | May 5, 2024 | CVE

A vulnerability was found in Gradio up to 4.12. It has been declared as problematic. This vulnerability affects the function _is_server_fn of the component Server. The manipulation leads to Privilege Escalation.

This vulnerability was named CVE-2024-34511. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34511 | Gradio up to 4.12 Server _is_server_fn Privilege Escalation

Related Posts

CVE-2024-39418 | Adobe Commerce/Magento Open Source up to 2.4.4-p9/2.4.5-p8/2.4.6-p6/2.4.7-p1 improper authorization (apsb24-61)

CVE-2023-4812 | GitLab Enterprise Edition up to 16.5.5/16.6.3/16.7.1 Merge Request access control

CVE-2023-6545 | Beckhoff TwinCAT BSD prior 4.37.5 authelia-bhf redirect (VDE-2023-067)

CVE-2024-3680 | Enter Addons Plugin up to 2.1.5 on WordPress Animation Title Widget img Tag cross site scripting