VYPR
Critical severity9.4NVD Advisory· Published Feb 5, 2024· Updated Jun 17, 2026

CVE-2024-0964

CVE-2024-0964

Description

A local file include could be remotely triggered in Gradio due to a vulnerable user-supplied JSON value in an API request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
gradioPyPI
< 4.9.04.9.0

Affected products

2
  • Gradio App/Gradiollm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: unspecified

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.