{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-11T04:15:27.466","vulnerabilities":[{"cve":{"id":"CVE-2024-51751","sourceIdentifier":"security-advisories@github.com","published":"2024-11-06T20:15:05.557","lastModified":"2025-08-26T16:34:42.117","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Gradio is an open-source Python package designed to enable quick builds of a demo or web application. If File or UploadButton components are used as a part of Gradio application to preview file content, an attacker with access to the application might abuse these components to read arbitrary files from the application server. This issue has been addressed in release version 5.5.0 and all users are advised to upgrade. There are no known workarounds for this vulnerability."},{"lang":"es","value":"Gradio es un paquete Python de código abierto diseñado para permitir compilaciones rápidas de una aplicación web o de demostración. Si se utilizan los componentes File o UploadButton como parte de la aplicación Gradio para obtener una vista previa del contenido de un archivo, un atacante con acceso a la aplicación podría abusar de estos componentes para leer archivos arbitrarios del servidor de aplicaciones. Este problema se ha solucionado en la versión 5.5.0 y se recomienda a todos los usuarios que la actualicen. No se conocen workarounds para esta vulnerabilidad."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gradio_project:gradio:*:*:*:*:*:python:*:*","versionStartIncluding":"5.0.0","versionEndExcluding":"5.5.0","matchCriteriaId":"B94EAA72-1E17-4B5F-9EA6-D529D6E385E2"}]}]}],"references":[{"url":"https://github.com/gradio-app/gradio/security/advisories/GHSA-rhm9-gp5p-5248","source":"security-advisories@github.com","tags":["Exploit","Third Party Advisory"]}]}}]}