CVE-2024-21575

8.6 HIGH

Published: December 12, 2024 Modified: April 15, 2026

Description

ComfyUI-Impact-Pack is vulnerable to Path Traversal. The issue stems from missing validation of the `image.filename` field in a POST request sent to the `/upload/temp` endpoint added by the extension to the server. This results in writing arbitrary files to the file system which may, under some conditions, result in remote code execution (RCE).

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

https://github.com/ltdrdata/ComfyUI-Impact-Pack/blob/1087f2ee063c9d53cd198add79b41a7a3465c05a/modules/impact/impact_server.py#L28

Source: report@snyk.io

https://github.com/ltdrdata/ComfyUI-Impact-Pack/commit/a43dae373e648ae0f0cc0c9768c3cea6a72acff7

Source: report@snyk.io

2 reference(s) from NVD

Quick Stats

CVSS v3 Score

8.6 / 10.0

EPSS (Exploit Probability)

1.3%

80th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-35

Related CVEs

CVE-2026-6563 8.8

CVE-2026-6562 7.3

CVE-2026-6561 4.7

CVE-2026-6560 8.8

CVE-2026-6559 4.3