Automatic1111 Stable-diffusion-webui — known CVE vulnerabilities
Every CVE whose affected-product data names Automatic1111 Stable-diffusion-webui, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2024-11045 — CVSS 9.6 (critical): A Cross-Site WebSocket Hijacking (CSWSH) vulnerability in automatic1111/stable-diffusion-webui version 1.10.0 allows an attacker to clone a…
CVE-2024-10935 — CVSS 7.5 (high): automatic1111/stable-diffusion-webui version 1.10.0 contains a vulnerability where the server fails to handle excessive characters appended…
CVE-2024-12074 — CVSS 6.5 (medium): A Denial of Service (DoS) vulnerability was discovered in the file upload feature of automatic1111/stable-diffusion-webui version 1.10.0…
CVE-2024-12375 — CVSS 6.5 (medium): A local file inclusion vulnerability was identified in automatic1111/stable-diffusion-webui, affecting version git 82a973c. This…
CVE-2024-11044 — CVSS 6.1 (medium): An open redirect vulnerability in automatic1111/stable-diffusion-webui version 1.10.0 allows a remote unauthenticated attacker to redirect…
CVE-2024-12374 — CVSS 6.1 (medium): A stored cross-site scripting (XSS) vulnerability exists in automatic1111/stable-diffusion-webui version git 82a973c. An attacker can…