Gradio Path Traversal Vulnerability in Audio Component Allowing Arbitrary File Deletion

A path traversal vulnerability has been identified in the Gradio Audio component of gradio-app/gradio, specifically in version git 98cbcae. This vulnerability allows an attacker to manipulate the output format of audio files, leading to the deletion of arbitrary file content on the server. By exploiting this flaw, an attacker can reset any targeted file to an empty state, causing a denial-of-service condition on the server.

Impact

Exploitation of this vulnerability results in the deletion of specified file contents on the server, causing a denial-of-service condition for both the Gradio application and the server itself.

Reproduction

To reproduce this vulnerability, upload a file to a location such as /tmp/123. Then, use a Gradio application that allows users to select the output format of audio files via a radio component. After setting up the application, send a POST request to the /run/predict endpoint. Include the audio format selection, along with a path traversal payload that targets the file uploaded earlier. The response will indicate successful exploitation, and the targeted file will be emptied.

Remediation

Users are advised to update to Gradio version 5.0 or later, where this vulnerability has been addressed.