CVE-2026-49119
Received Received - Intake

Path Traversal in Gradio FileExplorer Component

Vulnerability report for CVE-2026-49119, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-01

Last updated on: 2026-07-01

Assigner: VulnCheck

Description

Gradio before 6.16.0 contain a path traversal vulnerability in the FileExplorer component's preprocess() method that allows unauthenticated attackers to escape the configured root directory by supplying path segments containing directory traversal sequences or absolute paths. Attackers can provide crafted path segments that cause os.path.join to discard the root_dir prefix entirely, resulting in arbitrary file read or exposure of sensitive files outside the intended directory.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-01
Last Modified
2026-07-01
Generated
2026-07-02
AI Q&A
2026-07-01
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
gradio-app gradio to 6.16.0 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-22 The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Compliance Impact

The vulnerability allows unauthenticated attackers to read arbitrary files outside the intended directory, potentially exposing sensitive files.

Exposure of sensitive files due to this path traversal flaw could lead to violations of data protection regulations such as GDPR or HIPAA, which require safeguarding personal and sensitive information against unauthorized access.

Therefore, if exploited, this vulnerability could compromise compliance with standards that mandate strict access controls and protection of sensitive data.

Executive Summary

CVE-2026-49119 is a path traversal vulnerability in the Gradio library versions before 6.16.0, specifically in the FileExplorer component's preprocess() method.

This vulnerability allows unauthenticated attackers to escape the configured root directory by supplying crafted path segments containing directory traversal sequences (like "..") or absolute paths (like "/etc/passwd").

The issue arises because the preprocess() method used os.path.join and os.path.normpath to combine user-controlled paths with the root directory, which could be manipulated to discard the root directory prefix entirely.

As a result, attackers can read arbitrary files or expose sensitive files outside the intended directory.

The vulnerability was fixed by modifying preprocess() to use a safer path-joining method (_safe_join) that rejects absolute paths and directory traversal sequences by raising an error.

Impact Analysis

This vulnerability can allow attackers to read arbitrary files on the server running the vulnerable Gradio application.

Because attackers can bypass directory restrictions without authentication, sensitive files outside the intended root directory may be exposed.

Exposure of sensitive files could lead to information disclosure, potentially revealing configuration files, credentials, or other private data.

Detection Guidance

This vulnerability involves path traversal in the Gradio FileExplorer component's preprocess() method, allowing attackers to supply crafted path segments to escape the root directory. Detection involves monitoring for unusual file access attempts containing directory traversal sequences such as "../" or absolute paths like "/etc/passwd" in requests to the affected Gradio service.

Since the vulnerability is in the application layer, network detection can focus on inspecting HTTP requests to the Gradio FileExplorer endpoints for suspicious path parameters.

Suggested commands to detect exploitation attempts include using network traffic inspection tools or web server logs to search for traversal patterns:

  • grep -rE "(\.\./|/etc/passwd)" /var/log/nginx/access.log
  • tcpdump -A -s 0 'tcp port 80 or tcp port 443' | grep -E '(\.\./|/etc/passwd)'
  • Using web application firewall (WAF) rules to detect and block requests containing directory traversal sequences.
Mitigation Strategies

The primary mitigation is to upgrade Gradio to version 6.16.0 or later, where this path traversal vulnerability in the FileExplorer component has been fixed by enforcing safe path validation.

The fix involves modifying the preprocess() method to use a safe path-joining function (_safe_join) that rejects absolute paths and directory traversal sequences, preventing attackers from escaping the root directory.

Until the upgrade can be applied, consider implementing network-level protections such as web application firewalls (WAFs) to block requests containing suspicious path traversal patterns (e.g., '../' or absolute paths).

Additionally, review and restrict access to the Gradio FileExplorer component to trusted users or networks to reduce exposure.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-49119. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart