Stable Diffusion web UI 资源管理错误漏洞

Stable Diffusion web UI is a web interface for AUTOMATIC1111 individual developers. A resource management error vulnerability exists in Stable Diffusion web UI version 1.10.0, which stems from the server's failure to handle excessive characters at the end of multi-part boundaries, which could lea...

Stable Diffusion web UI 安全漏洞

Stable Diffusion web UI is a web interface for AUTOMATIC1111 individual developers. A security vulnerability exists in the Stable Diffusion web UI that originates from a specially crafted request and could lead to a local file inclusion attack...

Stable Diffusion web UI 输入验证错误漏洞

Stable Diffusion web UI is a web interface for AUTOMATIC1111 individual developers. An input validation error vulnerability exists in Stable Diffusion web UI version 1.10.0, which stems from an open redirection vulnerability that could lead to phishing attacks, malware distribution, and credentia...

PT-2025-12123 · Unknown · Automatic1111/Stable-Diffusion-Webui

Name of the Vulnerable Software and Affected Versions: automatic1111/stable-diffusion-webui version 1.10.0 Description: A Denial of Service DoS vulnerability exists in the file upload feature. The issue is due to improper handling of form-data with a large filename in the file upload request...

Stable Diffusion web UI 资源管理错误漏洞

Stable Diffusion web UI is a web interface for AUTOMATIC1111 individual developers. A resource management error vulnerability exists in Stable Diffusion web UI version 1.10.0, which stems from improper handling of form-data in a file upload request and could lead to a denial of service attack...

Stable Diffusion web UI 访问控制错误漏洞

Stable Diffusion web UI is a web interface for AUTOMATIC1111 individual developers. An access control error vulnerability exists in Stable Diffusion web UI version 1.10.0, which stems from a cross-site WebSocket hijacking vulnerability that could lead to unauthorized operations...

PT-2025-12080 · Unknown · Automatic1111/Stable-Diffusion-Webui

Name of the Vulnerable Software and Affected Versions: automatic1111/stable-diffusion-webui version 1.10.0 Description: The software is susceptible to a flaw where the server does not properly manage extra characters added to the end of multipart boundaries. This can be exploited by sending...

PT-2025-12097 · Unknown · Automatic1111/Stable-Diffusion-Webui

Name of the Vulnerable Software and Affected Versions: automatic1111/stable-diffusion-webui version 1.10.0 Description: A Cross-Site WebSocket Hijacking CSWSH vulnerability allows an attacker to clone a malicious server extension from a GitHub repository. The vulnerability is due to a lack of...

CVE-2024-32022

Kohyass is a GUI for Kohya's Stable Diffusion trainers. Kohyass is vulnerable to command injection in basiccaptiongui.py. This vulnerability is fixed in 23.1.5...

CVE-2024-32027

Kohyass is a GUI for Kohya's Stable Diffusion trainers. Kohyass v22.6.1 is vulnerable to command injection in finetunegui.py This vulnerability is fixed in 23.1.5...

Deserialization of Untrusted Data

Overview Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the torch.load function within the Checkpoint.loadcheckpoint method without restrictions. Details Serialization is a process of converting an object into a sequence of bytes which can be persisted t...

kernel: randomize_kstack: Improve entropy diffusion

This CVE has been marked as Rejected by the assigning CNA...

CVE-2024-35918

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2024-35918

In the Linux kernel, the following vulnerability has been resolved: randomizekstack: Improve entropy diffusion The kstackoffset variable was really only ever using the low bits for kernel stack offset entropy. Add a ror32 to increase bit diffusion...

CVE-2024-35918

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2024-35918

CVE-2024-35918 is rejected by its CVE Numbering Authority and is not an active vulnerability entry.

CVE-2024-35918

...

CVE-2024-32027 Kohya_ss is vulnerable to a command injection in `finetune_gui.py` (`GHSL-2024-022`)

Kohyass is a GUI for Kohya's Stable Diffusion trainers. Kohyass v22.6.1 is vulnerable to command injection in finetunegui.py This vulnerability is fixed in 23.1.5...

CVE-2024-32027 Kohya_ss is vulnerable to a command injection in `finetune_gui.py` (`GHSL-2024-022`)

Kohyass is a GUI for Kohya's Stable Diffusion trainers. Kohyass v22.6.1 is vulnerable to command injection in finetunegui.py This vulnerability is fixed in 23.1.5...

CVE-2024-32025 Kohya_ss is vulnerable to a command injection in `group_images_gui.py` (`GHSL-2024-021`)

Kohyass is a GUI for Kohya's Stable Diffusion trainers. Kohyass is vulnerable to a command injection in groupimagesgui.py. This vulnerability is fixed in 23.1.5...