16Nis
CVE-2024-1561 | gradio up to 4.12.x Temporary Directory /component_server move_resource_to_block_cache path traversal
A vulnerability was found in gradio up to 4.12.x. It has been rated as problematic. Affected by this issue is the functionmove_resource_to_block_cache
of the file /component_server of the component Temporary Directory Handler. The manipulation leads to path traversal: '\..\filename'.
This vulnerability is handled as CVE-2024-1561. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.