AVID-2026-R1397

Description

Command Injection in gradio-app/gradio via deploy+test-visual.yml workflow (CVE-2024-1540)

Details

A command injection vulnerability exists in the deploy+test-visual.yml workflow of the gradio-app/gradio repository, due to improper neutralization of special elements used in a command. This vulnerability allows attackers to execute unauthorized commands, potentially leading to unauthorized modification of the base repository or secrets exfiltration. The issue arises from the unsafe handling of GitHub context information within a run operation, where expressions inside ${{ }} are evaluated and substituted before script execution. Remediation involves setting untrusted input values to intermediate environment variables to prevent direct influence on script generation.

Reason for inclusion in AVID: CVE-2024-1540 describes a command injection vulnerability in the gradio-app/gradio GitHub Actions workflow (deploy+test-visual.yml). This is a software supply chain risk in the CI/CD tooling used to build/deploy AI-related software (Gradio, a tool commonly used for AI demos and apps). The issue enables remote command execution and potential exfiltration, clearly a security vulnerability with potential impact on AI deployment pipelines. The report provides sufficient details (CWE-77, CVSS 8.6), supporting its relevance to AI software supply chains.

References

• NVD entry
• https://huntr.com/bounties/0e39e974-9a66-476f-91f5-3f37abb03d77
• https://github.com/gradio-app/gradio/commit/d56bb28df80d8db1f33e4acf4f6b2c4f87cb8b28

Affected or Relevant Artifacts

• Developer: gradio-app
• Deployer: gradio-app
• Artifact Details:

Impact

AVID Taxonomy Categorization

• Risk domains: Security
• SEP subcategories: S0100: Software Vulnerability
• Lifecycle stages: L06: Deployment

CVSS

CWE

Other information

• Report Type: Advisory
• Credits:
• Date Reported: 2024-03-27
• Version: 0.3.3
• AVID Entry