Количество 2
Количество 2
CVE-2024-10648
A path traversal vulnerability exists in the Gradio Audio component of gradio-app/gradio, as of version git 98cbcae. This vulnerability allows an attacker to control the format of the audio file, leading to arbitrary file content deletion. By manipulating the output format, an attacker can reset any file to an empty file, causing a denial of service (DOS) on the server.
GHSA-pgfv-gvc5-prfg
Gradio Vulnerable to Arbitrary File Deletion
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-10648 A path traversal vulnerability exists in the Gradio Audio component of gradio-app/gradio, as of version git 98cbcae. This vulnerability allows an attacker to control the format of the audio file, leading to arbitrary file content deletion. By manipulating the output format, an attacker can reset any file to an empty file, causing a denial of service (DOS) on the server. | CVSS3: 8.2 | 0% Низкий | 11 месяцев назад |
| GHSA-pgfv-gvc5-prfg Gradio Vulnerable to Arbitrary File Deletion | CVSS3: 8.2 | 0% Низкий | 11 месяцев назад |
Уязвимостей на страницу