CVE-2024-32025

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-32025
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-32025.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-32025
Aliases
  • GHSA-qprv-9pg5-h33c
Published
2024-04-16T15:15:37Z
Modified
2024-07-08T18:27:12.505383Z
Summary
[none]
Details

Kohyass is a GUI for Kohya's Stable Diffusion trainers. Kohyass is vulnerable to a command injection in group_images_gui.py. This vulnerability is fixed in 23.1.5.

References

Affected packages

Git / github.com/bmaltais/kohya_ss

Affected ranges

Type
GIT
Repo
https://github.com/bmaltais/kohya_ss
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed

Affected versions

23.*

23.0.4

V21.*

V21.8.5

Other

v10
v11
v12
v15
v17
v18
v19
v8
v9

v17.*

v17.1
v17.2

v18.*

v18.1
v18.2
v18.3
v18.4
v18.5
v18.6
v18.7
v18.8

v19.*

v19.1
v19.2
v19.3
v19.3.1
v19.4
v19.4.1
v19.4.2

v20.*

v20.0
v20.0.4
v20.1
v20.2.1
v20.3.0
v20.3.1
v20.5.0
v20.5.2
v20.6.0
v20.6.1
v20.7.0
v20.7.1
v20.7.2
v20.7.3
v20.7.4
v20.8.0
v20.8.1
v20.8.2

v21.*

v21.0.1
v21.1.0
v21.1.1
v21.1.1b
v21.1.3
v21.1.4
v21.1.5
v21.2.0
v21.2.1
v21.2.3
v21.2.4
v21.2.5
v21.3.0
v21.3.1
v21.3.3
v21.3.4
v21.3.5
v21.3.6
v21.3.7
v21.3.8
v21.3.9
v21.4.0
v21.4.1
v21.4.2
v21.5.0
v21.5.1
v21.5.10
v21.5.11
v21.5.12
v21.5.14
v21.5.2
v21.5.4
v21.5.5
v21.5.7
v21.5.8
v21.5.9
v21.6.0
v21.6.1
v21.6.2
v21.6.3
v21.6.4
v21.6.6
v21.7.1
v21.7.10
v21.7.11
v21.7.12
v21.7.13
v21.7.14
v21.7.15
v21.7.16
v21.7.2
v21.7.3
v21.7.4
v21.7.5
v21.7.6
v21.7.7
v21.7.8
v21.7.9
v21.8.0
v21.8.10
v21.8.2
v21.8.3
v21.8.4
v21.8.6
v21.8.7
v21.8.8
v21.8.9

v22.*

v22.0.0
v22.0.1
v22.1.0
v22.1.1
v22.2.0
v22.2.1
v22.2.2
v22.3.0
v22.3.1
v22.4.0
v22.4.1
v22.5.0
v22.6.0
v22.6.1
v22.6.2

v23.*

v23.0.0
v23.0.1
v23.0.10
v23.0.11
v23.0.12
v23.0.13
v23.0.14
v23.0.15
v23.0.2
v23.0.3
v23.0.5
v23.0.6
v23.0.7
v23.0.8
v23.0.9
v23.1.0
v23.1.1
v23.1.2
v23.1.3