Critical severityNVD Advisory· Published Dec 14, 2023· Updated May 22, 2025
Command Injection in gradio-app/gradio
CVE-2023-6572
Description
Command Injection in GitHub repository gradio-app/gradio prior to main.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
gradioPyPI | < 4.14.0 | 4.14.0 |
Affected products
2- Range: unspecified
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-gqvf-3hgp-5hxvghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2023-6572ghsaADVISORY
- github.com/gradio-app/gradio/commit/5b5af1899dd98d63e1f9b48a93601c2db1f56520ghsaWEB
- github.com/pypa/advisory-database/tree/main/vulns/gradio/PYSEC-2023-255.yamlghsaWEB
- huntr.com/bounties/21d2ff0c-d43a-4afd-bb4d-049ee8da5b5cghsaWEB
News mentions
0No linked articles in our index yet.