CVE-2026-48545

medium

Published 2026-05-27 · Modified 2026-05-27

CVSS v3

6.8

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

CVSS v2

—

VIR risk

6.8

Description

Gradio before version 6.15.0 contains a cookie injection vulnerability that allows remote attackers to perform cross-Space session fixation by exploiting a shared module-level HTTP client used across all users in the reverse proxy endpoint. Attackers controlling any HF Space can return a parent-domain cookie that the shared client stores and automatically replays into all subsequent proxy requests to other legitimate Spaces, affecting all users of the same Gradio deployment.

Predictions

Exploit likelihood

77%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

References

https://github.com/gradio-app/gradio/releases/tag/gradio%406.15.0
https://github.com/gradio-app/gradio/issues/13369
https://github.com/gradio-app/gradio/pull/13384
https://github.com/gradio-app/gradio/commit/feb7237d01f359d2ad4ee42d00344e61692b3b39
https://www.vulncheck.com/advisories/gradio-cookie-injection-via-shared-pro

CWEs

CWE-384

Verify integrity in audit chain (admin only). AS-IS.