Vulnerability CVE-2024-32023
Published: 2024-04-16

Description:
Kohya_ss is a GUI for Kohya's Stable Diffusion trainers. Kohya_ss is vulnerable to a path injection in the `common_gui.py` `find_and_replace` function. This vulnerability is fixed in 23.1.5.

 References:
https://github.com/bmaltais/kohya_ss/security/advisories/GHSA-p945-7qm7-7j53
https://github.com/bmaltais/kohya_ss/commit/8bc67a7467f8366db1a4b9b3b14525ec763f1650
Copyright 2024, cxsecurity.com

 

Back to Top