Kohya_ss is a GUI for Kohya's Stable Diffusion trainers. Kohya_ss is vulnerable to a path injection in the `common_gui.py` `add_pre_postfix` function. This vulnerability is fixed in 23.1.5.
References
Configurations
No configuration.
History
19 Apr 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
17 Apr 2024, 12:48
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
16 Apr 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-16 15:15
Updated : 2024-04-19 16:15
NVD link : CVE-2024-32024
Mitre link : CVE-2024-32024
CVE.ORG link : CVE-2024-32024
JSON object : View
Products Affected
No product.
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')