CVE-2026-48545
MEDIUMGradio < 6.15.0 Cookie Injection via Shared Proxy Client
Title source: cnaDescription
Gradio before version 6.15.0 contains a cookie injection vulnerability that allows remote attackers to perform cross-Space session fixation by exploiting a shared module-level HTTP client used across all users in the reverse proxy endpoint. Attackers controlling any HF Space can return a parent-domain cookie that the shared client stores and automatically replays into all subsequent proxy requests to other legitimate Spaces, affecting all users of the same Gradio deployment.
References (5)
Core 5
Core References
Release Notes release-notes
https://github.com/gradio-app/gradio/releases/tag/gradio%406.15.0
Technical Description technical-description
https://github.com/gradio-app/gradio/issues/13369
Issue Tracking issue-tracking
https://github.com/gradio-app/gradio/pull/13384
Third Party Advisory third-party-advisory
https://www.vulncheck.com/advisories/gradio-cookie-injection-via-shared-pro
Scores
CVSS v3
6.8
EPSS
0.0036
EPSS Percentile
27.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-384
Status
published
Products (2)
gradio-app/gradio
< 6.15.0
gradio_project/gradio
< 6.15.0
Published
May 27, 2026
Tracked Since
May 27, 2026