PYSEC-2026-1458

See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/imaginairy/PYSEC-2026-1458.yaml
JSON Data
https://api.osv.dev/v1/vulns/PYSEC-2026-1458
Aliases
Published
2026-07-07T14:34:53.168435Z
Modified
2026-07-07T17:47:44.644995187Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
imaginAIry Denial of Service (DoS) vulnerability
Details

A Denial of Service (DoS) vulnerability exists in the brycedrennan/imaginairy repository, version 15.0.0. The vulnerability is present in the /api/stablestudio/generate endpoint, which can be exploited by sending an invalid request. This causes the server process to terminate abruptly, outputting KILLED in the terminal, and results in the unavailability of the server. This issue disrupts the server's functionality, affecting all users.

References

Affected packages

PyPI / imaginairy

Package

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
15.0.0

Affected versions

0.*
0.7.2
0.7.3
1.*
1.0.1
1.0.2
1.1.0
1.1.1
1.1.2
1.1.3
1.1.4
1.2.0
1.3.0
1.4.0
1.5.1
1.5.3
1.5.4
1.6.0
1.6.1
1.6.2
2.*
2.0.0
2.0.1
2.0.2
2.0.3
2.1.0
2.2.0
2.2.1
2.3.0
2.3.1
2.4.1
3.*
3.0.0
3.0.1
4.*
4.0.0
4.1.0
5.*
5.0.0
5.0.1
5.1.0
6.*
6.0.0a0
6.1.0
6.1.1
6.1.2
7.*
7.0.0
7.1.0
7.1.1
7.2.0
7.3.0
7.4.0
7.4.1
7.4.2
7.4.3
7.6.0
8.*
8.0.0
8.0.1
8.0.2
8.0.3
8.0.4
8.0.5
8.1.0
8.2.0
8.3.0
8.3.1
9.*
9.0.0
9.0.1
9.0.2
10.*
10.0.0
10.0.1
10.1.0
10.1.1
10.2.0
11.*
11.0.0
11.1.0
11.1.1
12.*
12.0.0
12.0.1
12.0.2
12.0.3
13.*
13.0b0
13.0.0
13.0.1
13.1.0
13.2.0
13.2.1
14.*
14.0.0b1
14.0.0b2
14.0.0b3
14.0.0b4
14.0.0b5
14.0.0b6
14.0.0b7
14.0.0b8
14.0.0b9
14.0.0
14.0.1
14.0.2
14.0.3
14.0.4
14.1.0
14.1.1
14.2.0
14.3.0
15.*
15.0.0

Database specific

source
"https://github.com/pypa/advisory-database/blob/main/vulns/imaginairy/PYSEC-2026-1458.yaml"