CVE-2025-48889: Gradio Allows Unauthorized File Copy via Path Manipulation

May 29, 2025 (updated May 30, 2025)

An arbitrary file copy vulnerability in Gradio’s flagging feature allows unauthenticated attackers to copy any readable file from the server’s filesystem. While attackers can’t read these copied files, they can cause DoS by copying large files (like /dev/urandom) to fill disk space.

References

github.com/advisories/GHSA-8jw3-6x8j-v96g
github.com/gradio-app/gradio
github.com/gradio-app/gradio/security/advisories/GHSA-8jw3-6x8j-v96g
nvd.nist.gov/vuln/detail/CVE-2025-48889

Code Behaviors & Features

Detect and mitigate CVE-2025-48889 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →