CVE-2024-32026

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Apr 16, 2024

Updated: Apr 19, 2024

CWE ID 77

Summary

CVE-2024-32026 is a newly disclosed vulnerability affecting the Kohya_ss application, a graphical user interface for Kohya's Stable Diffusion trainers. The weakness lies in the `git_caption_gui.py` component, which is susceptible to command injection. An attacker can exploit this flaw to execute arbitrary system commands and potentially gain unauthorized access or cause damage to the affected system. This vulnerability has been addressed in version 23.1.5 of Kohya_ss.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vUyCZJ
https://www.cve.org/CVERecord?id=CVE-2024-32026
https://nvd.nist.gov/vuln/detail/CVE-2024-32026

Back to Vulnerability Database

CVE-2024-32026

CVSS 3.1 Score 9.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations