CVE-2025-67303

Name of the Vulnerable Software and Affected Versions ComfyUI-Manager versions prior to 3.38

Description An issue in ComfyUI-Manager prior to version 3.38 allowed remote attackers to potentially manipulate its configuration and critical data. This was due to the application storing its files in an insufficiently protected location accessible via the web interface. Attackers can overwrite the config.ini configuration file by sending specific requests and exploit other dangerous interfaces to execute malicious script code, potentially gaining server permissions. Approximately 14,000 instances are exposed. Exploitation involves installing malicious git repositories through the API, leading to arbitrary code execution. The vulnerability stems from inadequate protection of the data and configuration directories by ComfyUI's Web API access control.

Recommendations Update ComfyUI-Manager to version 3.38 or later.