CVE-2024-11045

CVSS v3.1

9.6

Critical

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions automatic1111/stable-diffusion-webui version 1.10.0

Description A Cross-Site WebSocket Hijacking (CSWSH) vulnerability allows an attacker to clone a malicious server extension from a GitHub repository. The vulnerability is due to a lack of proper validation on WebSocket connections at the /queue/join API endpoint (ws://127.0.0.1:7860/queue/join), enabling unauthorized actions on the server. This can lead to unauthorized cloning of server extensions, execution of malicious scripts, data exfiltration, and potential denial of service (DoS).

Recommendations Ensure proper validation of WebSocket connections at ws://127.0.0.1:7860/queue/join to prevent unauthorized actions.

Exploit

Fix

DoS

Improper Access Control

Origin Validation Error

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284CWE-346

Related Identifiers

CVE-2024-11045

Affected Products

Automatic1111/Stable-Diffusion-Webui

CVE-2024-11045

Weakness Enumeration

Related Identifiers

Affected Products

References · 5