CVE-2024-32022

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Apr 16, 2024

Updated: Apr 19, 2024

CWE ID 77

Summary

CVE-2024-32022 is a newly identified vulnerability affecting Kohya_ss, a Graphical User Interface for Kohya's Stable Diffusion trainers. This issue allows an attacker to inject commands into the basic_caption_gui.py file, potentially gaining unauthorized access or executing arbitrary code. This vulnerability has been addressed in version 23.1.5 of Kohya_ss. Users are strongly encouraged to update their software to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vUyoKl
https://www.cve.org/CVERecord?id=CVE-2024-32022
https://nvd.nist.gov/vuln/detail/CVE-2024-32022

Back to Vulnerability Database

CVE-2024-32022

CVSS 3.1 Score 9.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations