Vulnerability Description
ComfyUI-Impact-Pack is vulnerable to Path Traversal. The issue stems from missing validation of the `image.filename` field in a POST request sent to the `/upload/temp` endpoint added by the extension to the server. This results in writing arbitrary files to the file system which may, under some conditions, result in remote code execution (RCE).
CVSS Score
HIGH
Related Weaknesses (CWE)
References
- https://github.com/ltdrdata/ComfyUI-Impact-Pack/blob/1087f2ee063c9d53cd198add79b
- https://github.com/ltdrdata/ComfyUI-Impact-Pack/commit/a43dae373e648ae0f0cc0c976
FAQ
What is CVE-2024-21575?
CVE-2024-21575 is a vulnerability with a CVSS score of 8.6 (HIGH). ComfyUI-Impact-Pack is vulnerable to Path Traversal. The issue stems from missing validation of the `image.filename` field in a POST request sent to the `/upload/temp` endpoint added by the extension ...
How severe is CVE-2024-21575?
CVE-2024-21575 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-21575?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.