AVID-2026-R1215

Description

Gradio contains Use of Hard-coded Credentials (CVE-2023-25823)

Details

Gradio is an open-source Python library to build machine learning and data science demos and web applications. Versions prior to 3.13.1 contain Use of Hard-coded Credentials. When using Gradio’s share links (i.e. creating a Gradio app and then setting share=True), a private SSH key is sent to any user that connects to the Gradio machine, which means that a user could access other users' shared Gradio demos. From there, other exploits are possible depending on the level of access/exposure the Gradio app provides. This issue is patched in version 3.13.1, however, users are recommended to update to 3.19.1 or later where the FRP solution has been properly tested.

Reason for inclusion in AVID: The CVE describes a vulnerability in the Gradio Python library (an AI tooling/framework used to build ML demos and web apps) where a private SSH key could be exposed to users via share links. This is a software vulnerability in a component commonly used in AI pipelines and deployment stacks. It affects software supply chains since downstream AI applications and demos rely on Gradio as a dependency; exploitation could impact AI systems’ security (credentials leakage, potential in-app access). The report provides CVE details and references, and the issue has remediation in newer Gradio versions. Therefore, it meets AI relevance, supply-chain relevance, security impact, and sufficiency criteria.

References

• NVD entry
• https://github.com/gradio-app/gradio/security/advisories/GHSA-3x5j-9vwr-8rr5

Affected or Relevant Artifacts

• Developer: gradio-app
• Deployer: gradio-app
• Artifact Details:

Impact

AVID Taxonomy Categorization

• Risk domains: Security
• SEP subcategories: S0100: Software Vulnerability
• Lifecycle stages: L06: Deployment

CVSS

CWE

Other information

• Report Type: Advisory
• Credits:
• Date Reported: 2023-02-23
• Version: 0.3.3
• AVID Entry