CVE-2024-21575 HIGH

CVE-2024-21575

Vendor Ltdrdata
Product ComfyUI-Impact-Pack
Weakness CWE-35
Published December 12, 2024
Last update December 12, 2024

CVSS base score

8.6/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality None
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

What the vulnerability does

01Description

ComfyUI-Impact-Pack is vulnerable to Path Traversal. The issue stems from missing validation of the `image.filename` field in a POST request sent to the `/upload/temp` endpoint added by the extension to the server. This results in writing arbitrary files to the file system which may, under some conditions, result in remote code execution (RCE).

Key dates

02Disclosure timeline

December 12, 2024 CVE published
December 12, 2024 Record updated